CVE-2026-47326 MEDIUM

CVE-2026-47326: Memory leak in Ubuntu Linux AppArmor large notification response allocation

Vendor Canonical
Product Ubuntu Linux
Weakness CWE-401
Published May 28, 2026
Last update May 28, 2026

CVSS base score

5.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a memory leak in the handling of big responses to AppArmor notifications. The bug can be triggered by an unprivileged local user. The memory leak could lead to resource exhaustion.

Key dates

02Disclosure timeline

May 28, 2026 CVE published
May 28, 2026 Record updated