CVE-2026-23405

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix: limit the number of levels of policy namespaces Currently the number of policy namespaces is not bounded relying on the user namespace limit. However policy namespaces aren't strictly tied to user namespaces and it...

CVE-2026-23405 apparmor: fix: limit the number of levels of policy namespaces

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix: limit the number of levels of policy namespaces Currently the number of policy namespaces is not bounded relying on the user namespace limit. However policy namespaces aren't strictly tied to user namespaces and it...

CVE-2026-23405

CVE-2026-23405 concerns the Linux kernel AppArmor feature where policy namespaces could be nested arbitrarily deep, potentially exhausting system resources. The vulnerability arises because policy namespaces were not bounded by the user namespace depth, and are not strictly tied to user namespace...

PT-2026-29488

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in apparmor where the number of policy namespaces is not bounded, potentially leading to resource exhaustion through arbitrary nesting. This issue is not...

Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2025-38499)

In the Linux kernel, the following vulnerability has been resolved: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. Wouldn't be able to undo may be a resu...

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

CVE-2021-3493 – Ubuntu OverlayFS Local Privilege Escalation...

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

CVE-2021-3493 – Ubuntu OverlayFS Local Privilege Escalation...

SUSE CVE-2026-23111

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix inverted genmask check in nftmapcatchallactivate nftmapcatchallactivate has an inverted element activity check compared to its non-catchall counterpart nftmapelemactivate and compared to what is logically...

UBUNTU-CVE-2026-23111

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix inverted genmask check in nftmapcatchallactivate nftmapcatchallactivate has an inverted element activity check compared to its non-catchall counterpart nftmapelemactivate and compared to what is logically...

CVE-2026-23111

CVE-2026-23111 (Linux kernel) : A bug in netfilter nf_tables nft_map_catchall_activate() inverted the genmask check, causing catchall elements to be processed incorrectly during abort of a DELSET operation. The function skipped inactive elements and processed active ones, leading to a use-after-f...

CVE-2026-23111

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix inverted genmask check in nftmapcatchallactivate nftmapcatchallactivate has an inverted element activity check compared to its non-catchall counterpart nftmapelemactivate and compared to what is logically...

Linux Distros Unpatched Vulnerability : CVE-2026-23111

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nftables: fix inverted genmask check in nftmapcatchallactivate nftmapcatchallactivate has an inverted element activity check compared to its...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003970)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003970 advisory. Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example,...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004322)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004322 advisory. Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example,...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000674)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000674 advisory. kernel/ptrace.c in the Linux kernel through 4.4.1 mishandles uid and gid mappings, which allows local users to gain privileges by establishing a user namespace,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001426)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001426 advisory. Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example,...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000576)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000576 advisory. The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003129)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003129 advisory. Linux kernel: heap out-of-bounds in AFPACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002531 advisory. The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003163)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003163 advisory. In the Linux kernel 4.15.x through 4.19.x before 4.19.2, mapwrite in kernel/usernamespace.c allows privilege escalation because it mishandles nested user namespaces...