CrackArmor: Critical AppArmor Flaws Enable Local Privilege Escalation to Root

**CrackArmor (AppArmor) — Executive Summary:** Qualys TRU discloses nine AppArmor implementation vulnerabilities present since Linux kernel v4.11 that allow unprivileged actors to manipulate pseudo-files to load/replace/remove profiles, bypass user‑namespace restrictions, cause kernel stack exhaustion (panic/DoS), disclose memory (KASLR bypass), break container isolation, and achieve local privilege escalation to root; the advisory includes PoCs (withheld publicly), vendor coordination, QIDs for detection, and an urgent recommendation to apply kernel patches immediately across Ubuntu, Debian, SUSE and affected deployments.