Description
In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix memleak in alloc_ns() After changes in commit a1bd627b46d1 ("apparmor: share profile name on replacement"), the hname member of struct aa_policy is not valid slab object, but a subset of that, it can not be freed by kfree_sensitive(), use aa_policy_destroy() to fix it.
Product status
a1bd627b46d169268a0ee5960899fb5be960a317 (git) before 9a32aa87a25d800b2c6f47bc2749a7bfd9a486f3
a1bd627b46d169268a0ee5960899fb5be960a317 (git) before 5f509fa740b17307f0cba412485072f632d5af36
a1bd627b46d169268a0ee5960899fb5be960a317 (git) before 0250cf8d37bb5201a117177afd24dc73a1c81657
a1bd627b46d169268a0ee5960899fb5be960a317 (git) before 12695b4b76d437b9c0182a6f7dfb2248013a9daf
a1bd627b46d169268a0ee5960899fb5be960a317 (git) before e9e6fa49dbab6d84c676666f3fe7d360497fd65b
4.13
Any version before 4.13
5.10.163 (semver)
5.15.86 (semver)
6.0.16 (semver)
6.1.2 (semver)
6.2 (original_commit_for_fix)
References
git.kernel.org/...c/9a32aa87a25d800b2c6f47bc2749a7bfd9a486f3
git.kernel.org/...c/5f509fa740b17307f0cba412485072f632d5af36
git.kernel.org/...c/0250cf8d37bb5201a117177afd24dc73a1c81657
git.kernel.org/...c/12695b4b76d437b9c0182a6f7dfb2248013a9daf
git.kernel.org/...c/e9e6fa49dbab6d84c676666f3fe7d360497fd65b
Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.
