5.5
CVE-2026-23403
- EPSS 0.18%
- Veröffentlicht 01.04.2026 08:36:34
- Zuletzt bearbeitet 24.04.2026 18:39:58
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
apparmor: fix memory leak in verify_header
In the Linux kernel, the following vulnerability has been resolved: apparmor: fix memory leak in verify_header The function sets `*ns = NULL` on every call, leaking the namespace string allocated in previous iterations when multiple profiles are unpacked. This also breaks namespace consistency checking since *ns is always NULL when the comparison is made. Remove the incorrect assignment. The caller (aa_unpack) initializes *ns to NULL once before the loop, which is sufficient.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 3.12.1 < 5.10.253
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.203
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.169
Linux ≫ Linux Kernel Version >= 6.2 < 6.6.130
Linux ≫ Linux Kernel Version >= 6.7 < 6.12.77
Linux ≫ Linux Kernel Version >= 6.13 < 6.18.18
Linux ≫ Linux Kernel Version >= 6.19 < 6.19.8
Linux ≫ Linux Kernel Version3.12 Update-
Linux ≫ Linux Kernel Version7.0 Updaterc1
Linux ≫ Linux Kernel Version7.0 Updaterc2
Linux ≫ Linux Kernel Version7.0 Updaterc3
Linux ≫ Linux Kernel Version7.0 Updaterc4
Linux ≫ Linux Kernel Version7.0 Updaterc5
Linux ≫ Linux Kernel Version7.0 Updaterc6
Linux ≫ Linux Kernel Version7.0 Updaterc7
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.18% | 0.073 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/663ce34786e759ebcbeb3060685c20bcc886d51a
https://git.kernel.org/stable/c/786e2c2a87d9c505f33321d1fd23a176aa8ddeb1
https://git.kernel.org/stable/c/4f0889f2df1ab99224a5e1ac4e20437eea5fe38e
https://git.kernel.org/stable/c/42fd831abfc15d0643c14688f0522556b347e7e6
https://git.kernel.org/stable/c/e38c55d9f834e5b848bfed0f5c586aaf45acb825
https://git.kernel.org/stable/c/6b79abcb3c985e153fcf9d395e1d4336081aabc2
https://git.kernel.org/stable/c/9d678eb0fe55c9195d9a253e8c5b82a87b930737
https://git.kernel.org/stable/c/bcf82c0c5a8b383fd2d5d8f3fd880cdcab2ac557