CVE-2026-47326 | THREATINT

Description

Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a memory leak in the handling of big responses to AppArmor notifications. The bug can be triggered by an unprivileged local user. The memory leak could lead to resource exhaustion.

PUBLISHED Reserved 2026-05-19 | Published 2026-05-28 | Updated 2026-05-28 | Assigner canonical

MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Problem types

CWE-401 Missing release of memory after effective lifetime

Product status

Default status

unaffected

6.8.0 (dpkg) before 6.8.0-124.124

affected

6.17.0 (dpkg) before 6.17.0-35.35

affected

7.0.0 (dpkg) before 7.0.0-22.22

affected

Credits

Tristan Madani (@TristanInSec), Talence Security finder

References

git.launchpad.net/...d858ecb7e2e216ca2987302a04c266f2355fefe patch

cve.org (CVE-2026-47326)

nvd.nist.gov (CVE-2026-47326)

Download JSON