Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004016)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004016 advisory. ext4protectreservedinode in fs/ext4/blockvalidity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service soft lockup via a crafted journal...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001277)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001277 advisory. The xfsdinodeverify function in fs/xfs/libxfs/xfsinodebuf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service xfsilockattrmapshared...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004173)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004173 advisory. A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid, user-creatable extended...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004256)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004256 advisory. The Linux kernel before 5.4.2 mishandles ext4expandextraisize, as demonstrated by use-after-free errors in ext4expandextraisize and ext4xattrsetentry, related to...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000825)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000825 advisory. The udfreadinode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB indirection, which allows physically proximate...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001354)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001354 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is a buffer overflow in truncateinlineinode in fs/f2fs/inline.c when umounting an f2fs image,...

CVE-2025-68821

A flaw was found in the Linux kernel's Filesystem in Userspace FUSE subsystem. This vulnerability allows a local attacker to cause a system-wide deadlock. The flaw occurs due to incorrect handling of inode references during readahead operations when the FUSE server does not implement the open...

btrfs: don't log conflicting inode if it's a dir moved in the current transaction

...

hfsplus: Verify inode mode when loading from disk

...

CVE-2025-68778

A data corruption flaw was found in the Linux kernel's Btrfs filesystem log replay mechanism. When a directory is moved between parent directories in the same transaction and then a file with the same name is created and synced, the log replay can create a directory with two hard links. This caus...

CVE-2025-68767

In the Linux kernel, the following vulnerability has been resolved: hfsplus: Verify inode mode when loading from disk syzbot is reporting that SIFMT bits of inode-imode can become bogus when the SIFMT bits of the 16bits "mode" field loaded from disk are corrupted. According to 1, the permissions...

SUSE CVE-2025-68778

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't log conflicting inode if it's a dir moved in the current transaction We can't log a conflicting inode if it's a directory and it was moved from one parent directory to another parent directory in the current...

SUSE CVE-2025-68809

In the Linux kernel, the following vulnerability has been resolved: ksmbd: vfs: fix race on mflags in vfscache ksmbd maintains delete-on-close and pending-delete state in ksmbdinode-mflags. In vfscache.c this field is accessed under inconsistent locking: some paths read and modify mflags under...

CVE-2025-68772

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid updating compression context during writeback Bai, Shuangpeng reported a bug as below: Oops: divide error: 0000 1 SMP KASAN PTI CPU: 0 UID: 0 PID: 11441 Comm: syz.0.46 Not tainted 6.17.0 1 PREEMPTfull Hardware...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003046)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003046 advisory. An issue was discovered in fs/xfs/xfsicache.c in the Linux kernel through 4.17.3. There is a NULL pointer dereference and panic in lookupslow on a NULL inode-iops...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003198)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003198 advisory. An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service out-of- bounds memory access and BUG can occur for a modified f2fs...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001833)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001833 advisory. The udfreadinode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB indirection, which allows physically proximate...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002475)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002475 advisory. The udfreadinode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB indirection, which allows physically proximate...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002120)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002120 advisory. The udfreadinode function in fs/udf/inode.c in the Linux kernel before 3.18.2 does not ensure a certain data-structure size consistency, which allows local users to...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002535)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002535 advisory. An issue was discovered in fs/xfs/libxfs/xfsattrleaf.c in the Linux kernel through 4.17.3. An OOPS may occur for a corrupted xfs image after xfsdashrinkinode is call...