Race Condition Vulnerability in Ubuntu Linux 6.8 Affecting AppArmor SAUCE Patches
CVE-2026-47331

7.8HIGH

Key Information:

Vendor: Canonical
Status: Ubuntu Linux
Vendor: CVE Published:; 28 May 2026

What is CVE-2026-47331?

Ubuntu Linux 6.8 contains a vulnerability in its AppArmor SAUCE patches that fails to properly manage locks during the modification of linked lists. This flaw allows an unprivileged local user to exploit a race condition, which could potentially lead to a use-after-free scenario. If successfully triggered, it may allow for arbitrary code execution on the affected system, posing significant security risks.

Affected Version(s)

Ubuntu Linux 6.8.0 < 6.8.0-124.124

References

https://git.launchpad.net/~ubuntu-kernel/ubuntu/+source/l...

patch

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 28, 2026
Vulnerability Reserved
May 19, 2026

Credit

Tristan Madani (@TristanInSec), Talence Security

CVE-2026-47331 Data

JSON

Canonical

What is CVE-2026-47331?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit