[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-8370-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-15T16:50:22.492Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":82,"duplicates":83,"related":84,"reserved_at":9,"published_at":102,"modified_at":103,"state":9,"summary":104,"references_raw":106,"kevs":182,"epss":9,"epss_history":183,"metrics":184,"affected":185},"USN-8370-1","linux, linux-aws, linux-gcp, linux-ibm, linux-nvidia, linux-oracle, linux-raspi, linux-realtime vulnerabilities\n\n\nIt was discovered that the Linux kernel did not properly handle shared page\nfragments during socket buffer operations, collectively known as Dirty\nFrag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the\nRxRPC networking subsystem when processing paged fragments. A local\nattacker could use this to escalate privileges, or possibly escape a\ncontainer. (CVE-2026-43284, CVE-2026-43500, CVE-2026-45998, CVE-2026-46000)\n\nIt was discovered that a logic flaw existed in the XFRM ESP-in-TCP\nsubsystem in the Linux kernel when handling socket buffer fragments. This\nflaw is known as Fragnesia. A local attacker could use this to escalate\nprivileges, or possibly escape a container. (CVE-2026-43503,\nCVE-2026-46300)\n\nQualys discovered that a race condition existed in the ptrace subsystem of\nthe Linux kernel when privileged processes are exiting. An unprivileged\nlocal attacker could use this issue to expose sensitive information.\n(CVE-2026-46333)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontain a memory leak when handling AppArmor notifications. A local\nattacker could use this to cause resource exhaustion. (CVE-2026-47326)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontain a NULL pointer dereference when handling AppArmor notifications. A\nlocal attacker could use this to cause a kernel oops. (CVE-2026-47327)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained an invalid free when handling AppArmor notifications. A local\nattacker could use this to corrupt kernel memory. (CVE-2026-47328)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained insufficient validation of AppArmor notification responses. A\nlocal attacker could use this to allow crafted responses to be processed.\n(CVE-2026-47329)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0 used\nan uninitialized variable when handling AppArmor notifications. A local\nattacker could use this to cause incorrect caching of data.\n(CVE-2026-47330)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained an out-of-bounds (OOB) read when handling AppArmor notifications.\nA local attacker could use this to cause information disclosure of kernel\nmemory. (CVE-2026-47332)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained a out-of-bounds (OOB) read when handling AppArmor notifications.\nA local attacker could use this to cause kernel memory corruption and,\ntheoretically, influence processing of AppArmor policies. (CVE-2026-47333)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained incorrect holding of locks when handling AppArmor notifications.\nA local attacker could use this to cause a kernel panic or deadlock.\n(CVE-2026-47334)\n\nTristan Madani and Trevor Lawrence have each independently discovered that\nUbuntu Linux kernel 6.8, 6.17 and 7.0 contained a NULL pointer dereference\nwhen handling AppArmor network socket mediation. A local attacker could use\nthis to cause a kernel oops. (CVE-2026-47337)\n\nA security issue was discovered in the Linux kernel.\nAn attacker could possibly use this to compromise the system.\nThis update corrects flaws in the following subsystem:\n  - RDS protocol;\n(CVE-2026-43494)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80],{"_key":15},"CVE-2026-43284",{"_key":17},"CVE-2026-43494",{"_key":19},"CVE-2026-43500",{"_key":21},"CVE-2026-43503",{"_key":23},"CVE-2026-45998",{"_key":25},"CVE-2026-46000",{"_key":27},"CVE-2026-46300",{"_key":29},"CVE-2026-46333",{"_key":31},"CVE-2026-47326",{"_key":33},"CVE-2026-47327",{"_key":35},"CVE-2026-47328",{"_key":37},"CVE-2026-47329",{"_key":39},"CVE-2026-47330",{"_key":41},"CVE-2026-47332",{"_key":43},"CVE-2026-47333",{"_key":45},"CVE-2026-47334",{"_key":47},"CVE-2026-47337",{"_key":49},"UBUNTU-CVE-2026-43284",{"_key":51},"UBUNTU-CVE-2026-43494",{"_key":53},"UBUNTU-CVE-2026-43500",{"_key":55},"UBUNTU-CVE-2026-43503",{"_key":57},"UBUNTU-CVE-2026-45998",{"_key":59},"UBUNTU-CVE-2026-46000",{"_key":61},"UBUNTU-CVE-2026-46300",{"_key":63},"UBUNTU-CVE-2026-46333",{"_key":65},"UBUNTU-CVE-2026-47326",{"_key":67},"UBUNTU-CVE-2026-47327",{"_key":69},"UBUNTU-CVE-2026-47328",{"_key":71},"UBUNTU-CVE-2026-47329",{"_key":73},"UBUNTU-CVE-2026-47330",{"_key":75},"UBUNTU-CVE-2026-47332",{"_key":77},"UBUNTU-CVE-2026-47333",{"_key":79},"UBUNTU-CVE-2026-47334",{"_key":81},"UBUNTU-CVE-2026-47337",[],[],[85,86,87,88,89,90,91,92,93,94,95,96,97,98,99,100,101],{"_key":57},{"_key":59},{"_key":65},{"_key":67},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":49},{"_key":51},{"_key":53},{"_key":55},{"_key":61},{"_key":63},"2026-06-02T13:52:18Z","2026-06-03T20:03:20.409209861Z",{"cisa_kev":105,"cisa_ransomware":105,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[107,113,118,122,126,130,134,138,142,146,150,154,158,162,166,170,174,178],{"url":108,"sources":109,"tags":111},"https://ubuntu.com/security/notices/USN-8370-1",[110],"osv_ubuntu",[112],"Advisory",{"url":114,"sources":115,"tags":116},"https://ubuntu.com/security/CVE-2026-43284",[110],[117],"REPORT",{"url":119,"sources":120,"tags":121},"https://ubuntu.com/security/CVE-2026-43494",[110],[117],{"url":123,"sources":124,"tags":125},"https://ubuntu.com/security/CVE-2026-43500",[110],[117],{"url":127,"sources":128,"tags":129},"https://ubuntu.com/security/CVE-2026-43503",[110],[117],{"url":131,"sources":132,"tags":133},"https://ubuntu.com/security/CVE-2026-45998",[110],[117],{"url":135,"sources":136,"tags":137},"https://ubuntu.com/security/CVE-2026-46000",[110],[117],{"url":139,"sources":140,"tags":141},"https://ubuntu.com/security/CVE-2026-46300",[110],[117],{"url":143,"sources":144,"tags":145},"https://ubuntu.com/security/CVE-2026-46333",[110],[117],{"url":147,"sources":148,"tags":149},"https://ubuntu.com/security/CVE-2026-47326",[110],[117],{"url":151,"sources":152,"tags":153},"https://ubuntu.com/security/CVE-2026-47327",[110],[117],{"url":155,"sources":156,"tags":157},"https://ubuntu.com/security/CVE-2026-47328",[110],[117],{"url":159,"sources":160,"tags":161},"https://ubuntu.com/security/CVE-2026-47329",[110],[117],{"url":163,"sources":164,"tags":165},"https://ubuntu.com/security/CVE-2026-47330",[110],[117],{"url":167,"sources":168,"tags":169},"https://ubuntu.com/security/CVE-2026-47332",[110],[117],{"url":171,"sources":172,"tags":173},"https://ubuntu.com/security/CVE-2026-47333",[110],[117],{"url":175,"sources":176,"tags":177},"https://ubuntu.com/security/CVE-2026-47334",[110],[117],{"url":179,"sources":180,"tags":181},"https://ubuntu.com/security/CVE-2026-47337",[110],[117],[],[],[],[186,198,204,210,216,222,226,232],{"ecosystem":187,"name":188,"vendor":189,"product":188,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":188,"source":9,"versions":191},"Ubuntu","linux","ubuntu","deb",[192],{"version":193,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":196,"version_end_type":197,"fixed_in":9},"lt7_0_0_22_22",true,"ecosystem","7.0.0-22.22","excluding",{"ecosystem":187,"name":199,"vendor":189,"product":199,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":199,"source":9,"versions":200},"linux-aws",[201],{"version":202,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":203,"version_end_type":197,"fixed_in":9},"lt7_0_0_1006_6","7.0.0-1006.6",{"ecosystem":187,"name":205,"vendor":189,"product":205,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":205,"source":9,"versions":206},"linux-gcp",[207],{"version":208,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":209,"version_end_type":197,"fixed_in":9},"lt7_0_0_1005_5","7.0.0-1005.5",{"ecosystem":187,"name":211,"vendor":189,"product":211,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":211,"source":9,"versions":212},"linux-ibm",[213],{"version":214,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":215,"version_end_type":197,"fixed_in":9},"lt7_0_0_1007_7","7.0.0-1007.7",{"ecosystem":187,"name":217,"vendor":189,"product":217,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":217,"source":9,"versions":218},"linux-nvidia",[219],{"version":220,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":221,"version_end_type":197,"fixed_in":9},"lt7_0_0_1009_9","7.0.0-1009.9",{"ecosystem":187,"name":223,"vendor":189,"product":223,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":223,"source":9,"versions":224},"linux-oracle",[225],{"version":208,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":209,"version_end_type":197,"fixed_in":9},{"ecosystem":187,"name":227,"vendor":189,"product":227,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":227,"source":9,"versions":228},"linux-raspi",[229],{"version":230,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":231,"version_end_type":197,"fixed_in":9},"lt7_0_0_1011_11","7.0.0-1011.11",{"ecosystem":187,"name":233,"vendor":189,"product":233,"cpe_part":9,"purl_type":190,"purl_namespace":189,"purl_name":233,"source":9,"versions":234},"linux-realtime",[235],{"version":236,"is_range":194,"range_type":195,"version_start":9,"version_start_type":9,"version_end":237,"version_end_type":197,"fixed_in":9},"lt7_0_0_22_22_1","7.0.0-22.22.1"]