Critical vulnerabilities have been discovered in the AppArmor - named “CrackArmor” - that allow unprivileged users to bypass kernel protections, escalate to root, and break container isolation.
None of the UCS versions maintained or under Extended Maintenance Support are affected by this security issue as AppArmor is disabled by default.
See also Bug 59133 which we will use to track the release of updates for the Linux kernel, sudo and util-linux once they become available upstream.