Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002395)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002395 advisory. The futexwait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain reference count during requeue operations, which allo...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001024)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001024 advisory. The futexwait function in kernel/futex.c in the Linux kernel before 2.6.37 does not properly maintain a certain reference count during requeue operations, which allo...

SUSE CVE-2010-4169

Use-after-free vulnerability in mm/mprotect.c in the Linux kernel before 2.6.37-rc2 allows local users to cause a denial of service via vectors involving an mprotect system call...

SUSE CVE-2010-4650

Buffer overflow in the fusedoioctl function in fs/fuse/file.c in the Linux kernel before 2.6.37 allows local users to cause a denial of service or possibly have unspecified other impact by leveraging the ability to operate a CUSE server...

SUSE CVE-2010-5332

In the Linux kernel before 2.6.37, an out of bounds array access happened in drivers/net/mlx4/port.c. When searching for a free entry in either mlx4registervlan or mlx4registermac, and there is no free entry, the loop terminates without updating the local variable free thus causing out of array...

SUSE CVE-2014-3532

dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnect of other services or applications by sending a message containing a file descriptor, then exceeding the maximum recursion depth before...

GSD-2022-1005716 staging: rtl8712: fix use after free bugs

staging: rtl8712: fix use after free bugs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.142 by commit...

CVE-2022-36530

An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page...

CVE-2022-36530

An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page...

CVE-2022-36530

CVE-2022-36530 affects rageframe2 version 2.6.37, describing an XSS vulnerability in the user agent related parameters of the info.php page. The cited sources consistently indicate this is a cross-site scripting issue, but do not provide explicit exploit details, affected build ranges beyond 2.6....

rageframe2 跨站脚本漏洞

rageframe2 is a rapid development application engine based on the Yii2 Advanced Framework by the individual developer Jianyan74. A security vulnerability exists in rageframe2 version 2.6.37, which is caused by an XSS vulnerability in the user-agent related parameters of the info.php page...

UVI-2021-1000678 NFS: fix an incorrect limit in filelayout_decode_layout()

NFS: fix an incorrect limit in filelayoutdecodelayout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.235 by commit...

GSD-2021-1000637 NFS: fix an incorrect limit in filelayout_decode_layout()

NFS: fix an incorrect limit in filelayoutdecodelayout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.124 by commit...

UVI-2021-1000604 NFS: fix an incorrect limit in filelayout_decode_layout()

NFS: fix an incorrect limit in filelayoutdecodelayout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.42 by commit...

Cayin Signage Media Player 3.0 Root Remote Command Injection

!/usr/bin/env python3 Cayin Signage Media Player 3.0 Root Remote Command Injection Vendor: CAYIN Technology Co., Ltd. Product web page: https://www.cayintech.com Affected version: SMP-8000QD v3.0 SMP-8000 v3.0 SMP-6000 v3.0 Build 19025 SMP-6000 v1.0 Build 14246 SMP-6000 v1.0 Build 14199 SMP-6000...

Linux kernel 'btrfs_ioctl_space_info' buffer overflow vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A buffer overflow vulnerability exists in the 'btrfsioctlspaceinfo' function in Linux kernel version 2.6.37. A local attacker could exploit this vulnerability to cause...

CVE-2011-0699

Integer signedness error in the btrfsioctlspaceinfo function in the Linux kernel 2.6.37 allows local users to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via a crafted slot value...

Integer overflow

Integer signedness error in the btrfsioctlspaceinfo function in the Linux kernel 2.6.37 allows local users to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via a crafted slot value...

PT-2014-3535 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.37 Description: The issue is related to the futex wait function in kernel/futex.c, which does not properly maintain a certain reference count during requeue operations. This can be exploited by local users t...

Design/Logic Flaw

dbus 1.3.0 before 1.6.22 and 1.8.x before 1.8.6, when running on Linux 2.6.37-rc4 or later, allows local users to cause a denial of service system-bus disconnect of other services or applications by sending a message containing a file descriptor, then exceeding the maximum recursion depth before...