MiracleLinux 4 : kernel-2.6.32-642.6.1.el6 (AXSA:2016-714:08)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-714:08 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

ocfs2: fix kernel BUG in ocfs2_find_victim_chain

...

ksmbd: vfs: fix race on m_flags in vfs_cache

...

ntfs: set dummy blocksize to read boot_block when mounting

...

f2fs: fix return value of f2fs_recover_fsync_data()

...

f2fs: fix to avoid updating compression context during writeback

...

f2fs: fix to avoid potential deadlock

...

btrfs: don't log conflicting inode if it's a dir moved in the current transaction

...

f2fs: fix to avoid updating zero-sized extent in extent cache

...

NFSD: NFSv4 file creation neglects setting ACL

...

CVE-2025-68778

A data corruption flaw was found in the Linux kernel's Btrfs filesystem log replay mechanism. When a directory is moved between parent directories in the same transaction and then a file with the same name is created and synced, the log replay can create a directory with two hard links. This caus...

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002754)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002754 advisory. An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service out-of- bounds memory access and BUG can occur upon encountering an...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002106)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002106 advisory. Race condition in the smbsendrqst function in fs/cifs/transport.c in the Linux kernel before 3.7.2 allows local users to cause a denial of service NULL pointer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002715)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002715 advisory. A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001820)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001820 advisory. The dofollowlink function in fs/namei.c in the Linux kernel before 2.6.33 does not properly handle the last pathname component during use of certain filesystems, whi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002129)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002129 advisory. The SMB2tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service NULL pointer dereference and...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002553)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002553 advisory. In the eaget function in fs/jfs/xattr.c in the Linux kernel through 4.17.1, a memory corruption bug in JFS can be triggered by calling setxattr twice with two...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002013)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002013 advisory. The udfpctochar function in fs/udf/symlink.c in the Linux kernel before 3.18.2 relies on component lengths that are unused, which allows local users to cause a denia...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001775)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001775 advisory. The NFSv4 implementation in the Linux kernel before 3.2.2 does not properly handle bitmap sizes in GETACL replies, which allows remote NFS servers to cause a denial ...