CVE-2026-47331
HighCVSS 7.8Exploitation Probability (EPSS)
Low risk3th percentile - higher than 3% of all known CVEs
Summary
Ubuntu Linux 6.8 contains AppArmor SAUCE patches which fail to acquire a lock when modifying a linked list. An unprivileged local user could trigger the race condition that can lead to a use-after-free (UAF) and, theoretically, arbitrary code execution.
Risk Assessment
The organization may be exposed to attacks from local users who could exploit this vulnerability to execute unauthorized code, potentially leading to serious security breaches.
Recommendation
It is recommended to update the Ubuntu system to the latest version to mitigate this vulnerability and to monitor the system for potential exploitation attempts.
Original NVD description (English source)
Ubuntu Linux 6.8 contains AppArmor SAUCE patches which fail to acquire a lock when modifying a linked list. An unprivileged local user could trigger the race condition that can lead to a use-after-free (UAF) and, theoretically, arbitrary code execution.

