Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper handling of regmap initialization in the dmaengine xilinx xdma module. This issue may le...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an improper initialization order of the freeqp object in the Irdma driver. This could lead to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013846)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013846 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: uinput - zero-initialize uinputffuploadcompat to avoid info leak Struct ffeffectcompat is...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013774)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013774 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix kernel NULL pointer dereference error When rxequeueinit in the function rxeqpinitre...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013648)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013648 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013730)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013730 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: hpsa: Fix possible memory leak in hpsainitone The hpdaallocctlrinfo allocates h and its fie...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013849)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013849 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/omap: dss: Fix refcount leak bugs In dssinitports and dssuninitports, we should call ofnodepu...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013579)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013579 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: setup GPIO controller later in probe The GPIO controller component of the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013473)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013473 advisory. In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash when devlink reload during pf initialization The devlink reload proce...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013832)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013832 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix race of buffer access at PCM OSS layer The PCM OSS layer tries to clear the buffer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013574)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013574 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: dio: fix possible memory leak in dioinit If deviceregister returns error, the 'dev' and...

PT-2026-34259

Integer overflow in scratch buffer initialization size calculation in Samsung Open Source ONE cause incorrect memory initialization for large intermediate tensors. Affected version is prior to commit 1.30.0...

PT-2026-34397

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RDMA/irdma component where the free qp completion is not initialized before use. Specifically, in the irdma create qp function, if the ib copy to udata call fails,...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013526)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013526 advisory. In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix possible leaked pernet namespace in smcinit In smcinit,...

PT-2026-34355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ext4 file system where the ext4 inode attach jinode function publishes ei-jinode to concurrent users before jbd2 journal init jbd inode is completed. This allows a...

EUVD-2025-209539

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241

CVE-2025-1241 affects Fortra GoAnywhere MFT (prior to 7.10.0) and GoAnywhere Agents (prior to 2.2.0) where a static IV enables brute-force decryption of encrypted values. Impact is confidentiality (high), with network access required and admin privileges needed. Remediation: upgrade to GoAnywhere...

CVE-2025-1241 Encryption vulnerable to brute-force decryption in GoAnywhere MFT

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241 Encryption vulnerable to brute-force decryption in GoAnywhere MFT

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...