Skip to main content

Linux CVE-2026-23406

| EUVDEUVD-2026-17834 HIGH
Out-of-bounds Read (CWE-125)
2026-04-01 416baaa9-dc9f-4396-8d5f-8c081fb06d67 GHSA-56hx-r887-5w6h
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Ubuntu
MEDIUM
qualitative
SUSE
6.1 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

6
Analysis Updated
Apr 18, 2026 - 09:31 vuln.today
v2 (cvss_changed)
Re-analysis Queued
Apr 18, 2026 - 09:22 vuln.today
cvss_changed
Patch released
Apr 01, 2026 - 14:30 nvd
Patch available
EUVD ID Assigned
Apr 01, 2026 - 09:22 euvd
EUVD-2026-17834
Analysis Generated
Apr 01, 2026 - 09:22 vuln.today
CVE Published
Apr 01, 2026 - 09:16 nvd
HIGH 7.8

DescriptionCVE.org

In the Linux kernel, the following vulnerability has been resolved:

apparmor: fix side-effect bug in match_char() macro usage

The match_char() macro evaluates its character parameter multiple times when traversing differential encoding chains. When invoked with *str++, the string pointer advances on each iteration of the inner do-while loop, causing the DFA to check different characters at each iteration and therefore skip input characters. This results in out-of-bounds reads when the pointer advances past the input buffer boundary.

[ 94.984676] ============== [ 94.985301] BUG: KASAN: slab-out-of-bounds in aa_dfa_match+0x5ae/0x760 [ 94.985655] Read of size 1 at addr ffff888100342000 by task file/976

[ 94.986319] CPU: 7 UID: 1000 PID: 976 Comm: file Not tainted 6.19.0-rc7-next-20260127 #1 PREEMPT(lazy) [ 94.986322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 [ 94.986329] Call Trace: [ 94.986341] <TASK> [ 94.986347] dump_stack_lvl+0x5e/0x80 [ 94.986374] print_report+0xc8/0x270 [ 94.986384] ? aa_dfa_match+0x5ae/0x760 [ 94.986388] kasan_report+0x118/0x150 [ 94.986401] ? aa_dfa_match+0x5ae/0x760 [ 94.986405] aa_dfa_match+0x5ae/0x760 [ 94.986408] __aa_path_perm+0x131/0x400 [ 94.986418] aa_path_perm+0x219/0x2f0 [ 94.986424] apparmor_file_open+0x345/0x570 [ 94.986431] security_file_open+0x5c/0x140 [ 94.986442] do_dentry_open+0x2f6/0x1120 [ 94.986450] vfs_open+0x38/0x2b0 [ 94.986453] ? may_open+0x1e2/0x2b0 [ 94.986466] path_openat+0x231b/0x2b30 [ 94.986469] ? __x64_sys_openat+0xf8/0x130 [ 94.986477] do_file_open+0x19d/0x360 [ 94.986487] do_sys_openat2+0x98/0x100 [ 94.986491] __x64_sys_openat+0xf8/0x130 [ 94.986499] do_syscall_64+0x8e/0x660 [ 94.986515] ? count_memcg_events+0x15f/0x3c0 [ 94.986526] ? srso_alias_return_thunk+0x5/0xfbef5 [ 94.986540] ? handle_mm_fault+0x1639/0x1ef0 [ 94.986551] ? vma_start_read+0xf0/0x320 [ 94.986558] ? srso_alias_return_thunk+0x5/0xfbef5 [ 94.986561] ? srso_alias_return_thunk+0x5/0xfbef5 [ 94.986563] ? fpregs_assert_state_consistent+0x50/0xe0 [ 94.986572] ? srso_alias_return_thunk+0x5/0xfbef5 [ 94.986574] ? arch_exit_to_user_mode_prepare+0x9/0xb0 [ 94.986587] ? srso_alias_return_thunk+0x5/0xfbef5 [ 94.986588] ? irqentry_exit+0x3c/0x590 [ 94.986595] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 94.986597] RIP: 0033:0x7fda4a79c3ea

Fix by extracting the character value before invoking match_char, ensuring single evaluation per outer loop.

AnalysisAI

Out-of-bounds memory read in Linux kernel AppArmor DFA matching affects kernel versions since 4.17 due to macro side-effect bug. The match_char() macro evaluates its character parameter multiple times when called with *str++, causing the pointer to advance past buffer boundaries during differential encoding chain traversal. Ubuntu has released patches (USN-8152-1) with fixes available in kernels 6.6.130, 6.12.77, 6.18.18, 6.19.8, and 7.0-rc4. EPSS score of 0.02% (5th percentile) indicates very low exploitation probability, and no public exploit or CISA KEV listing exists. CVSS 7.8 reflects local high-privilege impact, but real-world risk is limited to authenticated local users who can trigger AppArmor path permission checks.

Technical ContextAI

AppArmor implements mandatory access control using Deterministic Finite Automata (DFA) for policy matching. The vulnerable match_char() macro in the DFA traversal code performs differential encoding optimization to compress state transition tables. When the macro receives an expression with side effects like *str++ (pointer increment), C macro expansion causes the increment operation to execute multiple times within the do-while loop that follows differential encoding chains. Each iteration reads a different memory location, advancing the pointer beyond the intended input string boundary. This violates the intended single-character-per-state semantics of DFA matching. The bug was introduced in commit 074c1cd798cb (version 4.17, circa 2018) and affects the aa_dfa_match() function called during file permission checks (__aa_path_perm, apparmor_file_open). The KASAN report confirms slab-out-of-bounds reads at addresses beyond allocated buffer boundaries.

RemediationAI

Upgrade to patched Linux kernel versions: 6.6.130 or later for 6.6.x LTS branch, 6.12.77+ for 6.12.x, 6.18.18+ for 6.18.x, 6.19.8+ for 6.19.x, or 7.0-rc4+ for mainline development kernels. Ubuntu users should apply updates from USN-8152-1 (https://ubuntu.com/security/notices/USN-8152-1) using standard package management. Debian users should monitor security tracker and apply kernel updates when available through apt. Upstream fix commits are available at git.kernel.org stable (see references: b73c1dff8a9d, 5a184f7cbdea, 383b7270faf4, 8756b68edae3, 0510d1ba0976, c7dc56d8b37e, f16f2e5936c0, 1fc94f16098213d). If immediate patching is not feasible, disabling AppArmor enforcement (apparmor=0 kernel parameter) eliminates the vulnerable code path but removes all AppArmor-based mandatory access controls - this trade-off is acceptable only on single-user systems with no untrusted local users, as it degrades overall security posture. No application-layer workarounds exist since the bug is in kernel memory management during LSM hook execution.

Vendor StatusVendor

Ubuntu

Priority: Medium
linux
Release Status Version
trusty needs-triage -
xenial needs-triage -
bionic needs-triage -
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-hwe
Release Status Version
xenial needs-triage -
bionic ignored replaced by linux-hwe-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-hwe-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-hwe-5.8
Release Status Version
focal ignored superseded by linux-hwe-5.11
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-hwe-5.11
linux-hwe-5.11
Release Status Version
focal ignored superseded by linux-hwe-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-hwe-5.13
linux-hwe-5.13
Release Status Version
focal ignored superseded by linux-hwe-5.15
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-hwe-5.15
linux-hwe-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-hwe-5.19
Release Status Version
jammy ignored superseded by linux-hwe-6.2
noble DNE -
questing DNE -
upstream ignored superseded by linux-hwe-6.2
linux-hwe-6.2
Release Status Version
jammy ignored superseded by linux-hwe-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-hwe-6.5
linux-hwe-6.5
Release Status Version
jammy ignored superseded by linux-hwe-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-hwe-6.8
linux-hwe-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-hwe-6.11
Release Status Version
jammy DNE -
noble ignored superseded by linux-hwe-6.14
questing DNE -
upstream ignored superseded by linux-hwe-6.14
linux-hwe-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-hwe-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-hwe-edge
Release Status Version
xenial ignored superseded by linux-hwe
bionic ignored superseded by linux-hwe-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream ignored end of life
linux-lts-xenial
Release Status Version
trusty needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-kvm
Release Status Version
xenial needs-triage -
bionic needs-triage -
focal needs-triage -
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-allwinner-5.19
Release Status Version
jammy ignored end of kernel support
noble DNE -
questing DNE -
upstream ignored end of life
linux-aws
Release Status Version
trusty needs-triage -
xenial needs-triage -
bionic needs-triage -
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-aws-5.0
Release Status Version
bionic ignored superseded by linux-aws-5.3
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-5.3
linux-aws-5.3
Release Status Version
bionic ignored superseded by linux-aws-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-5.4
linux-aws-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-aws-5.8
Release Status Version
focal ignored superseded by linux-aws-5.11
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-5.11
linux-aws-5.11
Release Status Version
focal ignored superseded by linux-aws-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-5.13
linux-aws-5.13
Release Status Version
focal ignored superseded by linux-aws-5.15
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-5.15
linux-aws-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-aws-5.19
Release Status Version
jammy ignored superseded by linux-aws-6.2
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-6.2
linux-aws-6.2
Release Status Version
jammy ignored superseded by linux-aws-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-6.5
linux-aws-6.5
Release Status Version
jammy ignored superseded by linux-aws-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-aws-6.8
linux-aws-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-aws-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-aws-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-aws-hwe
Release Status Version
xenial needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure
Release Status Version
trusty needs-triage -
xenial needs-triage -
bionic ignored superseded by linux-azure-5.3
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-azure-4.15
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-5.3
Release Status Version
bionic ignored superseded by linux-azure-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-5.4
linux-azure-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-5.8
Release Status Version
focal ignored superseded by linux-azure-5.11
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-5.11
linux-azure-5.11
Release Status Version
focal ignored superseded by linux-azure-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-5.13
linux-azure-5.13
Release Status Version
focal ignored superseded by linux-azure-5.15
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-5.15
linux-azure-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-5.19
Release Status Version
jammy ignored superseded by linux-azure-6.2
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-6.2
linux-azure-6.2
Release Status Version
jammy ignored superseded by linux-azure-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-6.5
linux-azure-6.5
Release Status Version
jammy ignored superseded by linux-azure-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-6.8
linux-azure-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-6.11
Release Status Version
jammy DNE -
noble ignored superseded by linux-azure-6.14
questing DNE -
upstream ignored superseded by linux-azure-6.14
linux-azure-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-azure-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-azure-fde
Release Status Version
focal ignored superseded by linux-azure-fde-5.15
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-azure-fde-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-fde-5.19
Release Status Version
jammy ignored superseded by linux-azure-fde-6.2
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-fde-6.2
linux-azure-fde-6.2
Release Status Version
jammy ignored replaced by linux-azure-6.5
noble DNE -
questing DNE -
upstream ignored replaced by linux-azure-6.5
linux-azure-fde-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-fde-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-azure-fde-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-azure-nvidia
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-azure-nvidia-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-bluefield
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-edge
Release Status Version
bionic ignored superseded by linux-azure-5.3
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-azure-5.3
linux-fips
Release Status Version
xenial needs-triage -
bionic needs-triage -
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-aws-fips
Release Status Version
bionic needs-triage -
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-azure-fips
Release Status Version
bionic needs-triage -
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-gcp-fips
Release Status Version
bionic needs-triage -
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-gcp
Release Status Version
xenial needs-triage -
bionic ignored superseded by linux-gcp-5.3
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-gcp-4.15
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-gcp-5.3
Release Status Version
bionic ignored superseded by linux-gcp-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-5.4
linux-gcp-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-gcp-5.8
Release Status Version
focal ignored superseded by linux-gcp-5.11
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-5.11
linux-gcp-5.11
Release Status Version
focal ignored superseded by linux-gcp-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-5.13
linux-gcp-5.13
Release Status Version
focal ignored superseded by linux-gcp-5.15
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-5.15
linux-gcp-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-gcp-5.19
Release Status Version
jammy ignored superseded by linux-gcp-6.2
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-6.2
linux-gcp-6.2
Release Status Version
jammy ignored superseded by linux-gcp-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-6.5
linux-gcp-6.5
Release Status Version
jammy ignored superseded by linux-gcp-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-gcp-6.8
linux-gcp-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-gcp-6.11
Release Status Version
jammy DNE -
noble ignored superseded by linux-gcp-6.14
questing DNE -
upstream ignored superseded by linux-gcp-6.14
linux-gcp-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-gcp-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-gke
Release Status Version
focal ignored end of kernel support
jammy needs-triage -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-gke-4.15
Release Status Version
bionic ignored superseded by linux-gke-5.0
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-gke-5.0
linux-gke-5.4
Release Status Version
bionic ignored end of kernel support
jammy DNE -
noble DNE -
questing DNE -
upstream ignored end of life
linux-gke-5.15
Release Status Version
focal ignored end of kernel support
jammy DNE -
noble DNE -
questing DNE -
upstream ignored end of life
linux-gkeop
Release Status Version
focal ignored end of kernel support
jammy needs-triage -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-gkeop-5.4
Release Status Version
bionic ignored end of kernel support
jammy DNE -
noble DNE -
questing DNE -
upstream ignored end of life
linux-gkeop-5.15
Release Status Version
focal ignored end of kernel support
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-ibm
Release Status Version
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-ibm-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-ibm-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-ibm-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-intel-5.13
Release Status Version
focal ignored end of kernel support
jammy DNE -
noble DNE -
questing DNE -
upstream ignored end of life
linux-intel-iotg
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-intel-iotg-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-iot
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-intel-iot-realtime
Release Status Version
jammy ignored superseded by Ubuntu Pro ppa version
noble DNE -
questing DNE -
upstream needs-triage -
linux-lowlatency
Release Status Version
jammy needs-triage -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-lowlatency-hwe-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-lowlatency-hwe-5.19
Release Status Version
jammy ignored superseded by linux-lowlatency-hwe-6.2
noble DNE -
questing DNE -
upstream ignored superseded by linux-lowlatency-hwe-6.2
linux-lowlatency-hwe-6.2
Release Status Version
jammy ignored superseded by linux-lowlatency-hwe-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-lowlatency-hwe-6.5
linux-lowlatency-hwe-6.5
Release Status Version
jammy ignored superseded by linux-lowlatency-hwe-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-lowlatency-hwe-6.8
linux-lowlatency-hwe-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-lowlatency-hwe-6.11
Release Status Version
jammy DNE -
noble ignored replaced by linux-hwe-6.14
questing DNE -
upstream ignored replaced by linux-hwe-6.14
linux-nvidia
Release Status Version
jammy needs-triage -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-nvidia-6.2
Release Status Version
jammy ignored superseded by linux-nvidia-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-nvidia-6.5
linux-nvidia-6.5
Release Status Version
jammy ignored superseded by linux-nvidia-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-nvidia-6.8
linux-nvidia-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-nvidia-6.11
Release Status Version
jammy DNE -
noble ignored end of kernel support
questing DNE -
upstream ignored end of kernel support
linux-nvidia-lowlatency
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-nvidia-tegra
Release Status Version
jammy needs-triage -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-nvidia-tegra-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-nvidia-tegra-igx
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-oracle
Release Status Version
xenial needs-triage -
bionic needs-triage -
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-oracle-5.0
Release Status Version
bionic ignored superseded by linux-oracle-5.3
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oracle-5.3
linux-oracle-5.3
Release Status Version
bionic ignored superseded by linux-oracle-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oracle-5.4
linux-oracle-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-oracle-5.8
Release Status Version
focal ignored superseded by linux-oracle-5.11
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oracle-5.11
linux-oracle-5.11
Release Status Version
focal ignored superseded by linux-oracle-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oracle-5.13
linux-oracle-5.13
Release Status Version
focal ignored superseded by linux-oracle-5.15
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oracle-5.15
linux-oracle-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-oracle-6.5
Release Status Version
jammy ignored superseded by linux-oracle-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-oracle-6.8
linux-oracle-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-oracle-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-oracle-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-oem
Release Status Version
bionic ignored replaced by linux-hwe-5.4
jammy DNE -
noble DNE -
questing DNE -
upstream ignored end of life
linux-oem-5.6
Release Status Version
focal ignored superseded by linux-oem-5.10
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-5.10
linux-oem-5.10
Release Status Version
focal ignored superseded by linux-oem-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-5.13
linux-oem-5.13
Release Status Version
focal ignored superseded by linux-oem-5.14
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-5.14
linux-oem-5.14
Release Status Version
focal ignored replaced by linux-hwe-5.15
jammy DNE -
noble DNE -
questing DNE -
upstream ignored replaced by linux-hwe-5.15
linux-oem-5.17
Release Status Version
jammy ignored superseded by linux-oem-6.1
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-6.1
linux-oem-6.0
Release Status Version
jammy ignored superseded by linux-oem-6.1
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-6.1
linux-oem-6.1
Release Status Version
jammy ignored superseded by linux-oem-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-6.5
linux-oem-6.5
Release Status Version
jammy ignored superseded by linux-oem-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-oem-6.8
linux-oem-6.8
Release Status Version
jammy DNE -
noble ignored superseded by linux-oem-6.14
questing DNE -
upstream ignored superseded by linux-oem-6.14
linux-oem-6.11
Release Status Version
jammy DNE -
noble ignored superseded by linux-oem-6.14
questing DNE -
upstream ignored superseded by linux-oem-6.14
linux-oem-6.14
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-oem-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-raspi
Release Status Version
focal needs-triage -
jammy needs-triage -
noble needs-triage -
questing needs-triage -
upstream needs-triage -
linux-raspi2
Release Status Version
focal ignored replaced by linux-raspi
jammy DNE -
noble DNE -
questing DNE -
upstream ignored replaced by linux-raspi
linux-raspi-5.4
Release Status Version
bionic needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-raspi-realtime
Release Status Version
jammy DNE -
noble ignored superseded by Ubuntu Pro ppa version
questing DNE -
upstream needs-triage -
linux-realtime
Release Status Version
jammy ignored superseded by Ubuntu Pro ppa version
noble ignored superseded by Ubuntu Pro ppa version
questing needs-triage -
upstream needs-triage -
linux-realtime-6.8
Release Status Version
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-realtime-6.14
Release Status Version
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-riscv
Release Status Version
focal ignored superseded by linux-riscv-5.8
jammy ignored end of kernel support
noble ignored replaced by linux-riscv-6.14
questing needs-triage -
upstream needs-triage -
linux-riscv-5.8
Release Status Version
focal ignored superseded by linux-riscv-5.11
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-riscv-5.11
linux-riscv-5.11
Release Status Version
focal ignored superseded by linux-riscv-5.13
jammy DNE -
noble DNE -
questing DNE -
upstream ignored superseded by linux-riscv-5.13
linux-riscv-5.15
Release Status Version
focal needs-triage -
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -
linux-riscv-5.19
Release Status Version
jammy ignored end of kernel support
noble DNE -
questing DNE -
upstream ignored end of life
linux-riscv-6.5
Release Status Version
jammy ignored superseded by linux-riscv-6.8
noble DNE -
questing DNE -
upstream ignored superseded by linux-riscv-6.8
linux-riscv-6.8
Release Status Version
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-riscv-6.14
Release Status Version
jammy DNE -
noble ignored superseded by linux-riscv-6.17
questing DNE -
upstream ignored superseded by linux-riscv-6.17
linux-riscv-6.17
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-starfive-5.19
Release Status Version
jammy ignored end of kernel support
noble DNE -
questing DNE -
upstream ignored end of life
linux-starfive-6.2
Release Status Version
jammy ignored superseded by linux-starfive-6.5
noble DNE -
questing DNE -
upstream ignored superseded by linux-starfive-6.5
linux-starfive-6.5
Release Status Version
jammy ignored end of kernel support
noble DNE -
questing DNE -
upstream ignored end of life
linux-xilinx
Release Status Version
jammy DNE -
noble needs-triage -
questing DNE -
upstream needs-triage -
linux-xilinx-zynqmp
Release Status Version
focal needs-triage -
jammy needs-triage -
noble DNE -
questing DNE -
upstream needs-triage -
linux-realtime-6.17
Release Status Version
jammy DNE -
noble DNE -
questing DNE -
upstream needs-triage -

Debian

linux
Release Status Fixed Version Urgency
bullseye fixed 5.10.251-1 -
bullseye (security) fixed 5.10.251-1 -
bookworm fixed 6.1.164-1 -
bookworm (security) fixed 6.1.164-1 -
trixie fixed 6.12.74-2 -
trixie (security) fixed 6.12.74-2 -
forky fixed 6.19.8-1 -
sid fixed 6.19.10-1 -
(unstable) fixed 6.19.6-2 -

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed

Share

CVE-2026-23406 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy