Out-of-bounds read in Ubuntu Linux AppArmor notification handling_CVE-2026-47333

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in invalid data being processed by the AppArmor DFA policy engine.

Basic Information

ID CVE-2026-47333

Source canonical

Published May 28, 2026 at 18:28

Affected Product

Vendor Canonical

Product Ubuntu Linux

Version 6.8.0

Affected Versions Canonical Ubuntu Linux 6.8.0
Canonical Ubuntu Linux 6.17.0
Canonical Ubuntu Linux 7.0.0

CWE Classification

CWE-125

References

git.launchpad.net /~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/

{
    "lastseen": "",
    "description": "Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in invalid data being processed by the AppArmor DFA policy engine.",
    "published": "2026-05-28T18:28:28.221Z",
    "modified": "2026-05-28T18:28:28.221Z",
    "type": "cve",
    "title": "Out-of-bounds read in Ubuntu Linux AppArmor notification handling",
    "source": "canonical",
    "references": "https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit/?id=635fa30ed9e944bdb7e811fb8a8906286b4b4f06",
    "id": "CVE-2026-47333",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125"
    ],
    "cvelist": null,
    "sourceData": "Canonical Ubuntu Linux 6.8.0\nCanonical Ubuntu Linux 6.17.0\nCanonical Ubuntu Linux 7.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Ubuntu Linux",
    "version": "6.8.0",
    "vendor": "Canonical",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}