SUSE CVE-2022-50861

In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...

SUSE CVE-2023-54187

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix potential corruption when moving a directory F2FS has the same issue in ext4rename causing crash revealed by xfstests/generic/707. See also commit 0813299c586b "ext4: Fix possible corruption when moving a directory"...

SUSE CVE-2023-54264

In the Linux kernel, the following vulnerability has been resolved: fs/sysv: Null check to prevent null-ptr-deref bug sbgetblkinode-isb, parent return a null ptr and taking lock on that leads to the null-ptr-deref bug...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992904)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992904 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix null-ptr-deref in ext4writeinfo I caught a null-ptr-deref bug as follows:...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993305)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993305 advisory. In the Linux kernel, the following vulnerability has been resolved: gfs2: Check sbbsizeshift after reading superblock Fuzzers like to scribble over sbbsizeshift but ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992751)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992751 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix DFS traversal oops without CONFIGCIFSDFSUPCALL When compiled with CONFIGCIFSDFSUPCALL...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-992911)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992911 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: under NFSv4.1, fix double svcxprtput on rpccreate failure On error situation...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992868)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992868 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: check if leafidx greater than num leaves per dmap tree syzbot report a out of bounds in...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-993135)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993135 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix warning and UAF when destroy the MR list If the MR allocate failed, the MR recovery wor...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993128)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993128 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993232)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993232 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: decrease sccount directly if fail to queue dlrecall A deadlock warning occurred when invoki...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993133)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993133 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uaf in dbFreeBits syzbot reported...

Linux Distros Unpatched Vulnerability : CVE-2023-54313

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ovl: fix null pointer dereference in ovlgetaclrcu Following process: P1 P2 pathopenat linkpathwalk maylookup inodepermissionrcu ovlpermission aclpermissioncheck...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992719)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992719 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix idatasem unlock order in ext4indmigrate Fuzzing reports a possible deadlock in...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993068)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993068 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993014)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993014 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: wait for fixup workers before stopping cleaner kthread during umount During unmount, at...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992836)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992836 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix the behavior of READ near OFFSETMAX Dan Aloni reports: Due to commit 8cfb9015280d NFS:...

CVE-2025-15113

Ksenia Security lares legacy model Home Automation version 1.6 contains an unprotected endpoint vulnerability that allows authenticated attackers to upload MPFS File System binary images. Attackers can exploit this vulnerability to overwrite flash program memory and potentially execute arbitrary...

CVE-2025-15113

Ksenia Security Lares 4.0 Home Automation (version 1.6) is affected by CVE-2025-15113 due to an unprotected endpoint that lets authenticated attackers upload MPFS File System binary images. This can overwrite flash memory and potentially execute arbitrary code on the web server. Exploitation deta...

CVE-2025-15113 Ksenia Security lares Home Automation 1.6 Remote Code Execution via MPFS Upload

Ksenia Security lares legacy model Home Automation version 1.6 contains an unprotected endpoint vulnerability that allows authenticated attackers to upload MPFS File System binary images. Attackers can exploit this vulnerability to overwrite flash program memory and potentially execute arbitrary...