Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990113)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990113 advisory. In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sendone: fix missing CAN header initialization The read access to struct...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990053)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990053 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989803)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989803 advisory. In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989613)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989613 advisory. In the Linux kernel, the following vulnerability has been resolved: rpmsg: char: Fix race between the release of rpmsgctrldev and cdev struct rpmsgctrldev contains a...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989451)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989451 advisory. In the Linux kernel, the following vulnerability has been resolved: can: isotp: sanitize CAN ID checks in isotpbind Syzbot created an environment that lead to a stat...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990010)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990010 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: Fix command ring pointer corruption while aborting a command The command ring pointer is...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989607)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989607 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/gic/realview: Fix refcount leak in realviewgicofinit offindmatchingnodeandmatch returns a...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989095)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989095 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: jz4740: Apply DMA engine limits to maximum segment size Do what is done in other DMA-enabled...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989580)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989580 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: memcontrol: slab: fix obtain a reference to a freeing memcg Patch series Use objcgroup APIs t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988873)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988873 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix use-after-free warning Fix the following use-after-free warning which is...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989041)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989041 advisory. In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: atmel: fix refcount issue in atmelnandcontrollerinit The reference counting issue...

CVE-2025-62721 LinkAce: Authorization Bypass Allows Unauthorized Access to All Private Links, Lists, and Tags

LinkAce is a self-hosted archive to collect website links. In versions 2.3.1 and below, authenticated RSS feed endpoints in the FeedController class fail to implement proper authorization checks, allowing any authenticated user to access all links, lists, and tags from all users in the system,...

CVE-2025-62720

CVE-2025-62720 affects the LinkAce self-hosted archive. The vulnerability lies in the ExportController HTML/CSV export paths, which retrieve all links without applying ownership or visibility filtering, enabling any authenticated user to exfiltrate private links from all users. Affected versions ...

CVE-2025-12623

A vulnerability was identified in fushengqian fuint up to 41e26be8a2c609413a0feaa69bdad33a71ae8032. Affected by this issue is some unknown functionality of the file fuint-application/src/main/java/com/fuint/module/clientApi/controller/ClientSignController.java of the component Authentication Toke...

CVE-2025-47370 Reachable Assertion in BT Controller

Transient DOS when a remote device sends an invalid connection request during BT connectable LE scan...

CVE-2025-47370

Technical details, affected product/versions, root cause, and fixes for CVE-2025-47370 are not publicly provided in the supplied documents. Monitor for updates from vendors/security bulletins.

LinkAce 访问控制错误漏洞

LinkAce is a self-hosted archive of links to your favorite websites by Kevin Woblick Individual Developer. An Access Control Error vulnerability exists in LinkAce 2.3.1 and prior versions, which stems from the HTML and CSV export functionality in the ExportController class not applying ownership ...

PT-2025-44933

Name of the Vulnerable Software and Affected Versions Bluetooth affected versions not specified Description A temporary denial-of-service condition can occur when a remote device sends an invalid connection request during a Bluetooth Low Energy LE connectable scan. This issue is related to an...

PT-2025-49093

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where an invalid memory access can occur in the cros ec keyb process function when receiving an EC MKBP EVENT KEY MATRIX event. This happens if cros ec...

PT-2025-44971

Name of the Vulnerable Software and Affected Versions Linksys Wireless Network Controller Driver affected versions not specified Description The wlan AP driver contains a potential out-of-bounds write issue stemming from an incorrect bounds check. Successful exploitation could allow a malicious...