Linux Kernel Reference Count Leak Vulnerability in AppArmor's aa_pivotroot() Function

Vulnerability

A reference count leak vulnerability has been identified in the Linux kernel's AppArmor subsystem, specifically within the aa_pivotroot() function. The issue arises when aa_replace_current_label() successfully returns, as the function fails to decrement the reference count of the 'target' variable. This oversight occurs because the reference count is initially increased by build_pivotroot(), leading to a memory leak. The vulnerability has been addressed by ensuring that the reference count of 'target' is properly decreased in the relevant execution path.

Impact

Exploitation of this vulnerability could lead to a reference count leak, potentially causing memory management issues such as use-after-free vulnerabilities.

Added: Jun 18, 2025, 6:06 PM

Updated: Jun 18, 2025, 6:06 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.0

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Reference Count Leak Vulnerability in AppArmor's aa_pivotroot() Function

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating