Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986434)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986434 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix GPF in diFree Avoid passing inode with JFSSBIinode-isb-ipimap == NULL to diFree1. GFP wi...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414410)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414410 advisory. A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System JFSin the Linux kernel. This could allow a local attacker to crash the system or...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-390379)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-390379 advisory. In the Linux kernel, the following vulnerability has been resolved: vfs: fix race between eviceinodes and findinode&iput Hi, all Recently I noticed a bug1 in btrfs,...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-382521)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-382521 advisory. In the Linux kernel, the following vulnerability has been resolved: vfs: Don't evict inode under the inode lru traversing context The inode reclaiming processSee...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414301)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414301 advisory. A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-380468)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-380468 advisory. In the Linux kernel, the following vulnerability has been resolved: filelock: fix potential use-after-free in posixlockinode Light Hsieh reported a KASAN UAF warning...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986419)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986419 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: add reserved GDT blocks check We capture a NULL pointer issue when resizing a corrupt ext4...

Linux Distros Unpatched Vulnerability : CVE-2025-39927

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ceph: fix race condition validating rparent before applying state Add validation to ensure the cached parent directory inode matches the directory info in MDS...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-395439)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-395439 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix state management in error path of log writing function After commit a694291a6211...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986917)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986917 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: add reserved GDT blocks check We capture a NULL pointer issue when resizing a corrupt ext4...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986920)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986920 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix GPF in diFree Avoid passing inode with JFSSBIinode-isb-ipimap == NULL to diFree1. GFP wi...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986635)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986635 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: add reserved GDT blocks check We capture a NULL pointer issue when resizing a corrupt ext4...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414383)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414383 advisory. A vulnerability was found in Linux Kernel. It has been classified as problematic. Affected is the function nilfsnewinode of the file fs/nilfs2/inode.c of the compone...

kernel: smb: client: fix use-after-free in cifs_oplock_break

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cifsoplockbreak A race condition can occur in cifsoplockbreak leading to a use-after-free of the cinode structure when unmounting: cifsoplockbreak cifsFileInfoputcfile cifsFileInfoputfinal...

kernel: smb: client: fix use-after-free in cifs_oplock_break

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cifsoplockbreak A race condition can occur in cifsoplockbreak leading to a use-after-free of the cinode structure when unmounting: cifsoplockbreak cifsFileInfoputcfile cifsFileInfoputfinal...

RockyLinux 10 : kernel (RLSA-2025:9348)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:9348 advisory. kernel: proc: fix UAF in procgetinode CVE-2025-21999 kernel: ext4: fix off-by-one error in dosplit CVE-2025-23150 kernel: ext4: ignore xattrs past end...

CVE-2023-53536

In the Linux kernel, the following vulnerability has been resolved: blk-crypto: make blkcryptoevictkey more robust If blkcryptoevictkey sees that the key is still in-use due to a bug or that -keyslotevict failed, it currently just returns while leaving the key linked into the keyslot management...

CVE-2022-50485

In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4IGETBAD flag to prevent unexpected bad inode There are many places that will get unhappy and crash when ext4iget returns a bad inode. However, if iget the boot loader inode, allows a bad inode to be returned, becaus...

UBUNTU-CVE-2022-50485

In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4IGETBAD flag to prevent unexpected bad inode There are many places that will get unhappy and crash when ext4iget returns a bad inode. However, if iget the boot loader inode, allows a bad inode to be returned, becaus...

CVE-2023-53536

CVE-2023-53536 affects the Linux kernel in the blk-crypto subsystem. The issue stems from blk_crypto_evict_key() sometimes returning early without unlinking the key from the keyslot management structures, while the caller proceeds to free the blk_crypto_key. This mismatch can cause a use-after-fr...