CVE-2026-23403

🗓️ 01 Apr 2026 08:36:34Reported by LinuxType

Fix AppArmor verify_header memory leak by removing *ns = NULL; caller initializes *ns to NULL.

Reporter	Title	Published	Views	Family All 117
ATTACKERKB	CVE-2026-23403	1 Apr 202608:36	–	attackerkb
CBLMariner	CVE-2026-23403 affecting package kernel for versions less than 6.6.130.1-1	30 Mar 202616:12	–	cbl_mariner
Circl	CVE-2026-23403	7 Apr 202618:00	–	circl
CNNVD	Linux kernel 安全漏洞	1 Apr 202600:00	–	cnnvd
Cvelist	CVE-2026-23403 apparmor: fix memory leak in verify_header	1 Apr 202608:36	–	cvelist
Debian CVE	CVE-2026-23403	1 Apr 202608:36	–	debiancve
Tenable Nessus	EulerOS 2.0 SP11 : kernel (EulerOS-SA-2026-2209)	9 Jun 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : kernel (EulerOS-SA-2026-2247)	9 Jun 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-2293)	10 Jun 202600:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP13 : kernel (EulerOS-SA-2026-2336)	10 Jun 202600:00	–	nessus

NVD

Vulners

CNA

Node

linux linux_kernelRange3.12.1–5.10.253

linux linux_kernelRange5.11–5.15.203

linux linux_kernelRange5.16–6.1.169

linux linux_kernelRange6.2–6.6.130

linux linux_kernelRange6.7–6.12.77

linux linux_kernelRange6.13–6.18.18

linux linux_kernelRange6.19–6.19.8

linux linux_kernelMatch3.12-

linux linux_kernelMatch7.0rc1

linux linux_kernelMatch7.0rc2

linux linux_kernelMatch7.0rc3

linux linux_kernelMatch7.0rc4

linux linux_kernelMatch7.0rc5

linux linux_kernelMatch7.0rc6

linux linux_kernelMatch7.0rc7

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "security/apparmor/policy_unpack.c"
    ],
    "versions": [
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "9d678eb0fe55c9195d9a253e8c5b82a87b930737",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "6b79abcb3c985e153fcf9d395e1d4336081aabc2",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "bcf82c0c5a8b383fd2d5d8f3fd880cdcab2ac557",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "663ce34786e759ebcbeb3060685c20bcc886d51a",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "786e2c2a87d9c505f33321d1fd23a176aa8ddeb1",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "4f0889f2df1ab99224a5e1ac4e20437eea5fe38e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "42fd831abfc15d0643c14688f0522556b347e7e6",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "dd51c84857630e77c139afe4d9bba65fc051dc3f",
        "lessThan": "e38c55d9f834e5b848bfed0f5c586aaf45acb825",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "security/apparmor/policy_unpack.c"
    ],
    "versions": [
      {
        "version": "3.12",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "3.12",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.253",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.203",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.169",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.130",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.77",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.18",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.8",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/bcf82c0c5a8b383fd2d5d8f3fd880cdcab2ac557
git	www.git.kernel.org/stable/c/663ce34786e759ebcbeb3060685c20bcc886d51a
git	www.git.kernel.org/stable/c/42fd831abfc15d0643c14688f0522556b347e7e6
git	www.git.kernel.org/stable/c/4f0889f2df1ab99224a5e1ac4e20437eea5fe38e
git	www.git.kernel.org/stable/c/786e2c2a87d9c505f33321d1fd23a176aa8ddeb1
git	www.git.kernel.org/stable/c/9d678eb0fe55c9195d9a253e8c5b82a87b930737
git	www.git.kernel.org/stable/c/e38c55d9f834e5b848bfed0f5c586aaf45acb825
git	www.git.kernel.org/stable/c/6b79abcb3c985e153fcf9d395e1d4336081aabc2

11 May 2026 22:06Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.5

EPSS0.00011

CWE-401