SB2026040162 - Memory leak in Linux kernel apparmor
Published: April 1, 2026
Security Bulletin ID
SB2026040162
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2026-23403)
The vulnerability allows a local user to cause a denial of service.
The vulnerability exists due to improper memory management in the AppArmor subsystem when processing multiple profiles during profile unpacking. A local user can provide specially crafted profile data to cause a memory leak, leading to resource exhaustion.
Exploitation requires the ability to load AppArmor profiles, which is restricted to users with appropriate privileges.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/42fd831abfc15d0643c14688f0522556b347e7e6
- https://git.kernel.org/stable/c/4f0889f2df1ab99224a5e1ac4e20437eea5fe38e
- https://git.kernel.org/stable/c/663ce34786e759ebcbeb3060685c20bcc886d51a
- https://git.kernel.org/stable/c/786e2c2a87d9c505f33321d1fd23a176aa8ddeb1
- https://git.kernel.org/stable/c/e38c55d9f834e5b848bfed0f5c586aaf45acb825