NULL pointer dereference in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation

CVE	CVE-2026-47337
State	PUBLISHED
Assigner	canonical
Source Priority	CVE Program / NVD first with legacy fallback
Published	2026-05-28 19:16:42 UTC
Updated	2026-05-29 02:45:36 UTC
Description	Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops.

Primary CVSS: v3.1 3.3 LOW from [email protected]

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Problem Types: CWE-476 | CWE-476 CWE-476 NULL pointer dereference

Version	Source	Type	Score	Severity	Vector
3.1	[email protected]	Secondary	3.3	LOW	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L`
3.1	CNA	CVSS	3.3	LOW	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L`

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Source	Vendor	Product	Version	Platforms
CNA	Canonical	Ubuntu Linux	affected 6.8.0 6.8.0-124.124 dpkg	Not specified
CNA	Canonical	Ubuntu Linux	affected 6.17.0 6.17.0-35.35 dpkg	Not specified
CNA	Canonical	Ubuntu Linux	affected 7.0.0 7.0.0-22.22 dpkg	Not specified

Reference	Source	Link	Tags
git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/noble/commit	[email protected]	git.launchpad.net
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

CNA: Tristan Madani (@TristanInSec), Talence Security (en)

CNA: Trevor Lawrence, _SiCk, afflicted.sh (en)

There are currently no legacy QID mappings associated with this CVE.