Lucene search
K

54 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Apparmor: Fixed a missing bounds check on the DEFAULT table in verifydfa. The verifydfa function only checks the bounds of DEFAULTTABLE when the state is not differentially encoded. When the verification loop traverses the...

7.8CVSS6AI score0.00181EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: AppArmor: It is ensured that the DFA start states are within the valid range when unpackpdb is called. The start states are read from untrusted data and used as indexes into the DFA state tables. The aadfanext function call in...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/04 2:21 a.m.10 views

SUSE CVE-2026-46254

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References9
NVD
NVD
added 2026/06/03 6:16 p.m.31 views

CVE-2026-46254

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.5CVSS0.00114EPSS
Exploits0References4
OSV
OSV
added 2026/06/03 3:49 p.m.2 views

CVE-2026-46254 AppArmor: Allow apparmor to handle unaligned dfa tables

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/03 3:49 p.m.43 views

CVE-2026-46254 AppArmor: Allow apparmor to handle unaligned dfa tables

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

0.00114EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/03 3:49 p.m.10 views

EUVD-2026-34116

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.8AI score0.00114EPSS
Exploits0References4
CVE
CVE
added 2026/06/03 3:49 p.m.27 views

CVE-2026-46254

The CVE-2026-46254 issue concerns the Linux kernel AppArmor module mis-handling unaligned DFA tables (originating from kernel or userspace), which can cause unaligned memory accesses and kernel warnings. The available connected advisories confirm the vulnerability in AppArmor and document an even...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-46254

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and a...

5.5CVSS6.2AI score0.00114EPSS
Exploits0References3
OSV
OSV
added 2026/05/30 9:9 a.m.16 views

CLSA-2026-1780132171 Fix of 25 CVEs

CVE-2025-68724 - crypto: asymmetrickeys - prevent overflow in asymmetrickeygenerateid CVE-2025-68724 CVE-2025-71196 - phy: stm32-usphyc: Fix off by one in probe CVE-2025-71196 CVE-2026-23033 - dmaengine: omap-dma: fix dmapool resource leak in error paths CVE-2026-23033 CVE-2026-23049 -...

9.8CVSS5.9AI score0.00501EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/28 6:28 p.m.12 views

EUVD-2026-32988

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which can potentially incorrectly compute the size of an internal buffer, leading to a heap memory out-of-bounds read in notification handling code. The bug can be triggered by an unprivileged local user and can result in invalid data...

7.8CVSS5.8AI score0.00107EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.21 views

Canonical Ubuntu Linux 安全漏洞

Canonical Ubuntu Linux is a Linux operating system developed by the British company Canonical. The Canonical Ubuntu Linux versions 6.8, 6.17, and 7.0 have security vulnerabilities. These vulnerabilities stem from an incorrect calculation of the internal buffer size, which may lead to out-of-bound...

7.8CVSS5.9AI score0.00107EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/02 8:39 a.m.7 views

SUSE CVE-2026-23406

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix side-effect bug in matchchar macro usage The matchchar macro evaluates its character parameter multiple times when traversing differential encoding chains. When invoked with str++, the string pointer advances on eac...

6.1CVSS5.8AI score0.00177EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2026/04/02 8:39 a.m.9 views

SUSE CVE-2026-23407

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix missing bounds check on DEFAULT table in verifydfa The verifydfa function only checks DEFAULTTABLE bounds when the state is not differentially encoded. When the verification loop traverses the differential encoding...

6.1CVSS5.7AI score0.00181EPSS
Exploits0References22
RedhatCVE
RedhatCVE
added 2026/04/01 1:49 p.m.5 views

CVE-2026-23407

A flaw was found in AppArmor, a security module within the Linux kernel. A local user could exploit this vulnerability by providing a specially crafted Deterministic Finite Automaton DFA, a set of rules for pattern matching, to the verifydfa function. This malformed input causes the system to...

7.8CVSS5.9AI score0.00181EPSS
Exploits0References4
OSV
OSV
added 2026/04/01 9:16 a.m.8 views

UBUNTU-CVE-2026-23407

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix missing bounds check on DEFAULT table in verifydfa The verifydfa function only checks DEFAULTTABLE bounds when the state is not differentially encoded. When the verification loop traverses the differential encoding...

7.8CVSS5.7AI score0.00181EPSS
Exploits0References16
UbuntuCve
UbuntuCve
added 2026/04/01 9:16 a.m.6 views

CVE-2026-23407

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix missing bounds check on DEFAULT table in verifydfa The verifydfa function only checks DEFAULTTABLE bounds when the state is not differentially encoded. When the verification loop traverses the differential encoding...

7.8CVSS5.7AI score0.00181EPSS
Exploits0References15
Cvelist
Cvelist
added 2026/04/01 8:36 a.m.46 views

CVE-2026-23407 apparmor: fix missing bounds check on DEFAULT table in verify_dfa()

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix missing bounds check on DEFAULT table in verifydfa The verifydfa function only checks DEFAULTTABLE bounds when the state is not differentially encoded. When the verification loop traverses the differential encoding...

7.8CVSS0.00181EPSS
Exploits0References8
CVE
CVE
added 2026/04/01 8:36 a.m.21 views

CVE-2026-23407

The CVE-2026-23407 issue affects the Linux kernel AppArmor DFA verification. The root cause is a missing bounds check on DEFAULT_TABLE in verify_dfa(), which can read k = DEFAULT_TABLE[j] as an index without validation when traversing the differential encoding chain, allowing out-of-bounds reads/...

7.8CVSS5.7AI score0.00181EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/04/01 8:36 a.m.60 views

CVE-2026-23406

CVE-2026-23406 concerns the AppArmor Linux kernel module. The issue arises in the DFA matching logic used during file path checks, where the macro match_char() can evaluate its character parameter multiple times when traversing differential encoding chains. If invoked with *str++, the string poin...

7.8CVSS5.9AI score0.00177EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder