[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-USN-8371-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-15T16:50:22.492Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":86,"duplicates":87,"related":88,"reserved_at":9,"published_at":107,"modified_at":108,"state":9,"summary":109,"references_raw":111,"kevs":191,"epss":9,"epss_history":192,"metrics":193,"affected":194},"USN-8371-1","linux, linux-aws, linux-azure, linux-azure-6.17, linux-hwe-6.17, linux-nvidia-6.17, linux-oem-6.17, linux-oracle, linux-oracle-6.17, linux-raspi, linux-realtime, linux-realtime-6.17 vulnerabilities\n\n\nIt was discovered that the Linux kernel did not properly handle shared page\nfragments during socket buffer operations, collectively known as Dirty\nFrag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the\nRxRPC networking subsystem when processing paged fragments. A local\nattacker could use this to escalate privileges, or possibly escape a\ncontainer. (CVE-2026-43284, CVE-2026-43500, CVE-2026-45998, CVE-2026-46000)\n\nIt was discovered that a logic flaw existed in the XFRM ESP-in-TCP\nsubsystem in the Linux kernel when handling socket buffer fragments. This\nflaw is known as Fragnesia. A local attacker could use this to escalate\nprivileges, or possibly escape a container. (CVE-2026-43503,\nCVE-2026-46300)\n\nQualys discovered that a race condition existed in the ptrace subsystem of\nthe Linux kernel when privileged processes are exiting. An unprivileged\nlocal attacker could use this issue to expose sensitive information.\n(CVE-2026-46333)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontain a memory leak when handling AppArmor notifications. A local\nattacker could use this to cause resource exhaustion. (CVE-2026-47326)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontain a NULL pointer dereference when handling AppArmor notifications. A\nlocal attacker could use this to cause a kernel oops. (CVE-2026-47327)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained an invalid free when handling AppArmor notifications. A local\nattacker could use this to corrupt kernel memory. (CVE-2026-47328)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained insufficient validation of AppArmor notification responses. A\nlocal attacker could use this to allow crafted responses to be processed.\n(CVE-2026-47329)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0 used\nan uninitialized variable when handling AppArmor notifications. A local\nattacker could use this to cause incorrect caching of data.\n(CVE-2026-47330)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained an out-of-bounds (OOB) read when handling AppArmor notifications.\nA local attacker could use this to cause information disclosure of kernel\nmemory. (CVE-2026-47332)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained a out-of-bounds (OOB) read when handling AppArmor notifications.\nA local attacker could use this to cause kernel memory corruption and,\ntheoretically, influence processing of AppArmor policies. (CVE-2026-47333)\n\nTristan Madani discovered that Ubuntu Linux kernel 6.8, 6.17 and 7.0\ncontained incorrect holding of locks when handling AppArmor notifications.\nA local attacker could use this to cause a kernel panic or deadlock.\n(CVE-2026-47334)\n\nTristan Madani and Trevor Lawrence have each independently discovered that\nUbuntu Linux kernel 6.8, 6.17 and 7.0 contained a NULL pointer dereference\nwhen handling AppArmor network socket mediation. A local attacker could use\nthis to cause a kernel oops. (CVE-2026-47337)\n\nSeveral security issues were discovered in the Linux kernel.\nAn attacker could possibly use these to compromise the system.\nThis update corrects flaws in the following subsystems:\n  - RDS protocol;\n  - RxRPC session sockets;\n(CVE-2026-31676, CVE-2026-43494)\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84],{"_key":15},"CVE-2026-31676",{"_key":17},"CVE-2026-43284",{"_key":19},"CVE-2026-43494",{"_key":21},"CVE-2026-43500",{"_key":23},"CVE-2026-43503",{"_key":25},"CVE-2026-45998",{"_key":27},"CVE-2026-46000",{"_key":29},"CVE-2026-46300",{"_key":31},"CVE-2026-46333",{"_key":33},"CVE-2026-47326",{"_key":35},"CVE-2026-47327",{"_key":37},"CVE-2026-47328",{"_key":39},"CVE-2026-47329",{"_key":41},"CVE-2026-47330",{"_key":43},"CVE-2026-47332",{"_key":45},"CVE-2026-47333",{"_key":47},"CVE-2026-47334",{"_key":49},"CVE-2026-47337",{"_key":51},"UBUNTU-CVE-2026-31676",{"_key":53},"UBUNTU-CVE-2026-43284",{"_key":55},"UBUNTU-CVE-2026-43494",{"_key":57},"UBUNTU-CVE-2026-43500",{"_key":59},"UBUNTU-CVE-2026-43503",{"_key":61},"UBUNTU-CVE-2026-45998",{"_key":63},"UBUNTU-CVE-2026-46000",{"_key":65},"UBUNTU-CVE-2026-46300",{"_key":67},"UBUNTU-CVE-2026-46333",{"_key":69},"UBUNTU-CVE-2026-47326",{"_key":71},"UBUNTU-CVE-2026-47327",{"_key":73},"UBUNTU-CVE-2026-47328",{"_key":75},"UBUNTU-CVE-2026-47329",{"_key":77},"UBUNTU-CVE-2026-47330",{"_key":79},"UBUNTU-CVE-2026-47332",{"_key":81},"UBUNTU-CVE-2026-47333",{"_key":83},"UBUNTU-CVE-2026-47334",{"_key":85},"UBUNTU-CVE-2026-47337",[],[],[89,90,91,92,93,94,95,96,97,98,99,100,101,102,103,104,105,106],{"_key":51},{"_key":61},{"_key":63},{"_key":69},{"_key":71},{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},{"_key":83},{"_key":85},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":65},{"_key":67},"2026-06-02T14:46:10Z","2026-06-03T20:03:16.694437134Z",{"cisa_kev":110,"cisa_ransomware":110,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[112,118,123,127,131,135,139,143,147,151,155,159,163,167,171,175,179,183,187],{"url":113,"sources":114,"tags":116},"https://ubuntu.com/security/notices/USN-8371-1",[115],"osv_ubuntu",[117],"Advisory",{"url":119,"sources":120,"tags":121},"https://ubuntu.com/security/CVE-2026-31676",[115],[122],"REPORT",{"url":124,"sources":125,"tags":126},"https://ubuntu.com/security/CVE-2026-43284",[115],[122],{"url":128,"sources":129,"tags":130},"https://ubuntu.com/security/CVE-2026-43494",[115],[122],{"url":132,"sources":133,"tags":134},"https://ubuntu.com/security/CVE-2026-43500",[115],[122],{"url":136,"sources":137,"tags":138},"https://ubuntu.com/security/CVE-2026-43503",[115],[122],{"url":140,"sources":141,"tags":142},"https://ubuntu.com/security/CVE-2026-45998",[115],[122],{"url":144,"sources":145,"tags":146},"https://ubuntu.com/security/CVE-2026-46000",[115],[122],{"url":148,"sources":149,"tags":150},"https://ubuntu.com/security/CVE-2026-46300",[115],[122],{"url":152,"sources":153,"tags":154},"https://ubuntu.com/security/CVE-2026-46333",[115],[122],{"url":156,"sources":157,"tags":158},"https://ubuntu.com/security/CVE-2026-47326",[115],[122],{"url":160,"sources":161,"tags":162},"https://ubuntu.com/security/CVE-2026-47327",[115],[122],{"url":164,"sources":165,"tags":166},"https://ubuntu.com/security/CVE-2026-47328",[115],[122],{"url":168,"sources":169,"tags":170},"https://ubuntu.com/security/CVE-2026-47329",[115],[122],{"url":172,"sources":173,"tags":174},"https://ubuntu.com/security/CVE-2026-47330",[115],[122],{"url":176,"sources":177,"tags":178},"https://ubuntu.com/security/CVE-2026-47332",[115],[122],{"url":180,"sources":181,"tags":182},"https://ubuntu.com/security/CVE-2026-47333",[115],[122],{"url":184,"sources":185,"tags":186},"https://ubuntu.com/security/CVE-2026-47334",[115],[122],{"url":188,"sources":189,"tags":190},"https://ubuntu.com/security/CVE-2026-47337",[115],[122],[],[],[],[195,207,213,217,223,229,235,241,247,253,259,265],{"ecosystem":196,"name":197,"vendor":198,"product":197,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":197,"source":9,"versions":200},"Ubuntu","linux","ubuntu","deb",[201],{"version":202,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":205,"version_end_type":206,"fixed_in":9},"lt6_17_0_35_35",true,"ecosystem","6.17.0-35.35","excluding",{"ecosystem":196,"name":208,"vendor":198,"product":208,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":208,"source":9,"versions":209},"linux-aws",[210],{"version":211,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":212,"version_end_type":206,"fixed_in":9},"lt6_17_0_1017_17","6.17.0-1017.17",{"ecosystem":196,"name":214,"vendor":198,"product":214,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":214,"source":9,"versions":215},"linux-azure",[216],{"version":211,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":212,"version_end_type":206,"fixed_in":9},{"ecosystem":196,"name":218,"vendor":198,"product":218,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":218,"source":9,"versions":219},"linux-azure-6.17",[220],{"version":221,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":222,"version_end_type":206,"fixed_in":9},"lt6_17_0_1017_17~24_04_1","6.17.0-1017.17~24.04.1",{"ecosystem":196,"name":224,"vendor":198,"product":224,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":224,"source":9,"versions":225},"linux-hwe-6.17",[226],{"version":227,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":228,"version_end_type":206,"fixed_in":9},"lt6_17_0_35_35~24_04_1","6.17.0-35.35~24.04.1",{"ecosystem":196,"name":230,"vendor":198,"product":230,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":230,"source":9,"versions":231},"linux-nvidia-6.17",[232],{"version":233,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":234,"version_end_type":206,"fixed_in":9},"lt6_17_0_1021_21","6.17.0-1021.21",{"ecosystem":196,"name":236,"vendor":198,"product":236,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":236,"source":9,"versions":237},"linux-oem-6.17",[238],{"version":239,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":240,"version_end_type":206,"fixed_in":9},"lt6_17_0_1024_24","6.17.0-1024.24",{"ecosystem":196,"name":242,"vendor":198,"product":242,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":242,"source":9,"versions":243},"linux-oracle",[244],{"version":245,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":246,"version_end_type":206,"fixed_in":9},"lt6_17_0_1016_16","6.17.0-1016.16",{"ecosystem":196,"name":248,"vendor":198,"product":248,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":248,"source":9,"versions":249},"linux-oracle-6.17",[250],{"version":251,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":252,"version_end_type":206,"fixed_in":9},"lt6_17_0_1016_16~24_04_1","6.17.0-1016.16~24.04.1",{"ecosystem":196,"name":254,"vendor":198,"product":254,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":254,"source":9,"versions":255},"linux-raspi",[256],{"version":257,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":258,"version_end_type":206,"fixed_in":9},"lt6_17_0_1018_18","6.17.0-1018.18",{"ecosystem":196,"name":260,"vendor":198,"product":260,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":260,"source":9,"versions":261},"linux-realtime",[262],{"version":263,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":264,"version_end_type":206,"fixed_in":9},"lt6_17_0_1014_16","6.17.0-1014.16",{"ecosystem":196,"name":266,"vendor":198,"product":266,"cpe_part":9,"purl_type":199,"purl_namespace":198,"purl_name":266,"source":9,"versions":267},"linux-realtime-6.17",[268],{"version":269,"is_range":203,"range_type":204,"version_start":9,"version_start_type":9,"version_end":270,"version_end_type":206,"fixed_in":9},"lt6_17_0_1014_16~24_04_1","6.17.0-1014.16~24.04.1"]