Volerion logoVolerion
Volerion logoVolerion

Linux Kernel AppArmor Double Free Vulnerability in Profile Replacement Function

Vulnerability

A double free vulnerability has been identified in the Linux kernel's AppArmor subsystem, specifically within the profile replacement function. This issue arises when the 'ns_name' variable is NULL after unpacking user data, leading to a situation where 'ns_name' is assigned from an entity that has already been freed. The vulnerability affects the stable versions of the Linux kernel.

Impact

Exploitation of this vulnerability could lead to memory corruption issues, commonly associated with double free vulnerabilities, which can be exploited to execute arbitrary code or cause a denial of service.

Reproduction

The vulnerability can be reproduced by loading an AppArmor policy that includes namespaces, while the 'ns_name' is NULL. This triggers the unpacking of user data, followed by a double free when the 'ns_name' is assigned from an entity that is subsequently freed.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability.

Added: Apr 1, 2026, 9:24 AM
Updated: Apr 1, 2026, 9:24 AM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
3.1
exploitability
4.3
remediation
7.7
relevance
5.1
threat
4.8
urgency
2.9
incentive
0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.