CVE-2026-47332
AppArmor Out-of-Bounds Read in Ubuntu Linux
Publication date: 2026-05-28
Last updated on: 2026-05-28
Assigner: Canonical Ltd.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ubuntu | linux | to 6.8 (inc) |
| ubuntu | linux | to 6.17 (inc) |
| ubuntu | linux | to 7.0 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-125 | The product reads data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
The vulnerability can lead to information disclosure, meaning that sensitive data stored in adjacent memory areas (slab objects) could be exposed to an unprivileged local user.
Since the vulnerability allows reading memory out-of-bounds, it could compromise confidentiality but does not affect integrity or availability.
Can you explain this vulnerability to me?
This vulnerability exists in Ubuntu Linux versions 6.8, 6.17, and 7.0 within the AppArmor SAUCE patches. It involves incorrect validation of the size of an internal structure, which leads to an out-of-bounds read in the notification handling code.
An unprivileged local user can trigger this bug, causing the system to read memory beyond the intended boundaries, potentially disclosing information from adjacent slab objects.