Lucene search
K

11 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Fixed a double-free of nsname in aareplaceprofiles. If nsname is NULL after 1071 error = aaunpackudata, &lh, &nsname; and if ent-nsname contains an nsname in 1089 else if ent-nsname then nsname is assigned the value of...

7.8CVSS5.8AI score0.00181EPSS
Exploits0References3
OSV
OSV
added 2026/05/27 12:18 p.m.4 views

CVE-2026-45965 apparmor: fix invalid deref of rawdata when export_binary is unset

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix invalid deref of rawdata when exportbinary is unset If the exportbinary parameter is disabled on runtime, profiles that were loaded before that will still have their rawdata stored in apparmorfs, with a symbolic lin...

5.5CVSS5.8AI score0.0016EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.14 views

PT-2026-43832

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in AppArmor where a NULL pointer dereference occurs when the export binary parameter is disabled at runtime. Profiles loaded before this change retain their raw data in...

5.5CVSS5.4AI score0.0016EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Avoid crashing when parsing a profile name that is empty. When processing a packed profile in unpackprofile, the string “:samba-dcerpcd” is parsed as a fully qualified name and then passed to aasplitnfqname...

5.5CVSS6.2AI score0.0024EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2026/03/16 11:2 p.m.17 views

USN-8095-2: Linux kernel (FIPS) vulnerabilities

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information kernel memory, local...

7.8CVSS7AI score0.00519EPSS
Exploits7References1
SUSE CVE
SUSE CVE
added 2025/12/31 12:31 a.m.8 views

SUSE CVE-2022-50860

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix memleak in allocns After changes in commit a1bd627b46d1 "apparmor: share profile name on replacement", the hname member of struct aapolicy is not valid slab object, but a subset of that, it can not be freed by...

5.5CVSS6.3AI score0.00206EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/02/24 3:17 a.m.10 views

SUSE CVE-2023-52443

In the Linux kernel, the following vulnerability has been resolved: apparmor: avoid crash when parsed profile name is empty When processing a packed profile in unpackprofile described like "profile :ns::samba-dcerpcd /usr/lib/samba/,samba/samba-dcerpcd ..." a string ":samba-dcerpcd" is unpacked a...

5.5CVSS6.2AI score0.0024EPSS
Exploits0References15
OSV
OSV
added 2024/02/22 5:15 p.m.1 views

DEBIAN-CVE-2023-52443

In the Linux kernel, the following vulnerability has been resolved: apparmor: avoid crash when parsed profile name is empty When processing a packed profile in unpackprofile described like "profile :ns::samba-dcerpcd /usr/lib/samba/,samba/samba-dcerpcd ..." a string ":samba-dcerpcd" is unpacked a...

5.5CVSS5.5AI score0.0024EPSS
Exploits0References1
OSV
OSV
added 2024/02/22 5:15 p.m.4 views

UBUNTU-CVE-2023-52443

In the Linux kernel, the following vulnerability has been resolved: apparmor: avoid crash when parsed profile name is empty When processing a packed profile in unpackprofile described like "profile :ns::samba-dcerpcd /usr/lib/samba/,samba/samba-dcerpcd ..." a string ":samba-dcerpcd" is unpacked a...

5.5CVSS6.1AI score0.0024EPSS
Exploits0References27
Cvelist
Cvelist
added 2024/02/22 4:13 p.m.43 views

CVE-2023-52443 apparmor: avoid crash when parsed profile name is empty

In the Linux kernel, the following vulnerability has been resolved: apparmor: avoid crash when parsed profile name is empty When processing a packed profile in unpackprofile described like "profile :ns::samba-dcerpcd /usr/lib/samba/,samba/samba-dcerpcd ..." a string ":samba-dcerpcd" is unpacked a...

6.3AI score0.0024EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2016/04/06 12:0 a.m.7 views

The vulnerability of the iOS operating system, which allows a perpetrator to replace the trusted profile of the MDM device

The vulnerability of the iOS operating system’s Profiles component exists due to insufficient verification of certificate authenticity. Exploiting this vulnerability allows a malicious actor to replace the trusted profile of the MDM remotely...

5CVSS7.2AI score0.01011EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder