Linux Kernel Vulnerability in AppArmor
CVE-2026-23269

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 March 2026

What is CVE-2026-23269?

A vulnerability in the Linux Kernel's AppArmor component was identified, where untrusted data can lead to out-of-bounds read issues during the unpacking of policies. Specifically, when start states are read and utilized as indexes in the DFA state tables, it can potentially exceed the defined bounds. This flaw occurs in the aa_dfa_next() function within unpack_pdb(), causing access to invalid memory areas, which could compromise system integrity and stability. Implementing strict validation on policies and enforcing bounds during unpacking is recommended to mitigate the risk associated with this vulnerability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux ad5ff3db53c68c2f12936bc74ea5dfe0af943592 < 15c3eb8916e7db01cb246d04a1fe6f0fdc065b0c

Linux ad5ff3db53c68c2f12936bc74ea5dfe0af943592 < 0baadb0eece2c4d939db10d3c323b4652ac79a58

Linux ad5ff3db53c68c2f12936bc74ea5dfe0af943592 < 3bb7db43e32190c973d4019037cedb7895920184

References

https://git.kernel.org/stable/c/15c3eb8916e7db01cb246d04a...
https://git.kernel.org/stable/c/0baadb0eece2c4d939db10d3c...
https://git.kernel.org/stable/c/3bb7db43e32190c973d401903...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.