CVE-2026-45848

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
27/05/2026
Last modified:
27/05/2026

Description

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> apparmor: fix NULL sock in aa_sock_file_perm<br /> <br /> Deal with the potential that sock and sock-sk can be NULL during<br /> socket setup or teardown. This could lead to an oops. The fix for NULL<br /> pointer dereference in __unix_needs_revalidation shows this is at<br /> least possible for af_unix sockets. While the fix for af_unix sockets<br /> applies for newer mediation this is still the fall back path for older<br /> af_unix mediation and other sockets, so ensure it is covered.

Impact