CVE-2026-23404

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> apparmor: replace recursive profile removal with iterative approach<br /> <br /> The profile removal code uses recursion when removing nested profiles,<br /> which can lead to kernel stack exhaustion and system crashes.<br /> <br /> Reproducer:<br /> $ pf=&amp;#39;a&amp;#39;; for ((i=0; i /sys/kernel/security/apparmor/.remove<br /> <br /> Replace the recursive __aa_profile_list_release() approach with an<br /> iterative approach in __remove_profile(). The function repeatedly<br /> finds and removes leaf profiles until the entire subtree is removed,<br /> maintaining the same removal semantic without recursion.