Description
Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops.
Published: 2026-05-28
Score: 3.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A NULL pointer dereference occurs in the handling of IPv4 and IPv6 socket mediation within the Ubuntu Linux kernel. When an unprivileged local user triggers this flaw, the kernel panics and triggers an oops, leading to an immediate system crash. The primary consequence is loss of availability for the affected host, as the kernel oops undoes all running processes and requires a reboot to resume normal operation.

Affected Systems

Canonical Ubuntu Linux kernels 6.8, 6.17, and 7.0 are affected. Users running these kernel versions are susceptible to the vulnerability if they have local user accounts that can submit arbitrary network socket operations.

Risk and Exploitability

The CVSS score is 3.3, indicating a low severity potential impact. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog, which limits its current exploitation visibility. The attack vector is local and requires an unprivileged user to manipulate socket mediation, making it accessible on machines with inbound user access. Although the flaw does not provide immediate escalation or data exfiltration, the resulting kernel panic can be leveraged as a denial‑of‑service attack against the host.

Generated by OpenCVE AI on May 28, 2026 at 20:51 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install an updated Ubuntu kernel version that contains the SAUCE patch, or rebuild the kernel with the patch applied.
  • Reboot the system to load the updated kernel.
  • Monitor system logs for kernel oops events and audit local user activity to reduce accidental exploitation.

Generated by OpenCVE AI on May 28, 2026 at 20:51 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Ubuntu USN Ubuntu USN USN-8370-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-8371-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-8373-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-8374-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-8440-1 Linux kernel (Azure) vulnerabilities
History

Fri, 29 May 2026 21:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:o:canonical:ubuntu_linux:6.17:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:6.8:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:7.0:*:*:*:*:*:*:*

Thu, 28 May 2026 22:00:00 +0000

Type Values Removed Values Added
First Time appeared Canonical
Canonical ubuntu Linux
Vendors & Products Canonical
Canonical ubuntu Linux

Thu, 28 May 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 28 May 2026 19:00:00 +0000

Type Values Removed Values Added
Description Ubuntu Linux 6.8, 6.17 and 7.0 contain SAUCE patches with a possible NULL pointer dereference in the handling of AF_INET/AF_INET6 socket mediation. The bug can be triggered by an unprivileged local user. This can lead to a kernel oops.
Title NULL pointer dereference in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation
Weaknesses CWE-476
References
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L'}

Subscriptions

Canonical Ubuntu Linux
cve-icon MITRE

Status: PUBLISHED

Assigner: canonical

Published:

Updated: 2026-05-28T19:23:08.247Z

Reserved: 2026-05-19T10:37:36.434Z

Link: CVE-2026-47337

cve-icon Vulnrichment

Updated: 2026-05-28T19:23:02.356Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T19:16:42.560

Modified: 2026-05-29T21:21:45.863

Link: CVE-2026-47337

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T21:45:27Z

Weaknesses