Local User Crafted AppAmor Name Field in Ubuntu 6.8/6.17/7.0 SAUCE
CVE-2026-47329 Published on May 28, 2026
Incorrect validation of field size in Ubuntu Linux AppArmor notification responses
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches which fail to validate invalid sizes of the name field in AppAmor notification responses. The bug can be triggered by an unprivileged local user and could result in handling of crafted responses.
Vulnerability Analysis
CVE-2026-47329 can be exploited with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality, with no impact on integrity, and no impact on availability.
Weakness Type
Improper Validation of Specified Quantity in Input
The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.
Products Associated with CVE-2026-47329
Want to know whenever a new CVE is published for Canonical Ubuntu Linux? stack.watch will email you.
Affected Versions
Canonical Ubuntu Linux:- Version 6.8.0 and below 6.8.0-124.124 is affected.
- Version 6.17.0 and below 6.17.0-35.35 is affected.
- Version 7.0.0 and below 7.0.0-22.22 is affected.