CVE-2026-23403

MEDIUM

apparmor: fix memory leak in verify_header

Title source: cna

Description

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix memory leak in verify_header The function sets `*ns = NULL` on every call, leaking the namespace string allocated in previous iterations when multiple profiles are unpacked. This also breaks namespace consistency checking since *ns is always NULL when the comparison is made. Remove the incorrect assignment. The caller (aa_unpack) initializes *ns to NULL once before the loop, which is sufficient.

References (8)

https://git.kernel.org/stable/c/663ce34786e759ebcbeb3060685c20bcc886d51a

https://git.kernel.org/stable/c/786e2c2a87d9c505f33321d1fd23a176aa8ddeb1

https://git.kernel.org/stable/c/4f0889f2df1ab99224a5e1ac4e20437eea5fe38e

https://git.kernel.org/stable/c/42fd831abfc15d0643c14688f0522556b347e7e6

https://git.kernel.org/stable/c/e38c55d9f834e5b848bfed0f5c586aaf45acb825

https://git.kernel.org/stable/c/9d678eb0fe55c9195d9a253e8c5b82a87b930737

https://git.kernel.org/stable/c/6b79abcb3c985e153fcf9d395e1d4336081aabc2

https://git.kernel.org/stable/c/bcf82c0c5a8b383fd2d5d8f3fd880cdcab2ac557

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (22)

Linux/Linux < 3.12

Linux/Linux 3.12

Linux/Linux 5.10.253 - 5.10.*

Linux/Linux 5.15.203 - 5.15.*

Linux/Linux 6.1.169 - 6.1.*

Linux/Linux 6.12.77 - 6.12.*

Linux/Linux 6.18.18 - 6.18.*

Linux/Linux 6.19.8 - 6.19.*

Linux/Linux 6.6.130 - 6.6.*

Linux/Linux 7.0

... and 12 more

Published Apr 01, 2026

Tracked Since Apr 01, 2026