USN-8277-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

PT-2026-34387

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the s390 architecture where the r12 register is not properly cleared during kernel entry. Previously, entry handlers loaded r12 with the current task pointer for use b...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001855)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001855 advisory. arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local user...

SUSE CVE-2023-54117

In the Linux kernel, the following vulnerability has been resolved: s390/dcssblk: fix kernel crash with listadd corruption Commit fb08a1908cb1 "dax: simplify the daxdevice gendisk association" introduced new logic for gendisk association, requiring drivers to explicitly call daxaddhost and...

kernel: s390/dcssblk: fix kernel crash with list_add corruption

A kernel crash vulnerability was found in the Linux kernel's s390 dcssblk driver. Missing daxremovehost calls in the device removal path, combined with broken error handling in the device add path, cause stale xarray entries and listadd corruption. When a previously used gendisk pointer is reused...

s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct()

...

SUSE CVE-2024-56706

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Fix and protect memory allocation of SDBs with mutex Reservation of the PMU hardware is done at first event creation and is protected by a pair of mutexlock and mutexunlock. After reservation of the PMU hardware the...

KVM: s390: fix validity interception issue when gisa is switched off

...

SUSE SLED12 / SLES12 Security Update : installation-images (SUSE-SU-2023:2819-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2819-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

UBUNTU-CVE-2014-3534

arch/s390/kernel/ptrace.c in the Linux kernel before 3.15.8 on the s390 platform does not properly restrict address-space control operations in PTRACEPOKEUSRAREA requests, which allows local users to obtain read and write access to kernel memory locations, and consequently gain privileges, via a...

security flaw

The copyfromuser function in the uaccess code in Linux kernel 2.6 before 2.6.19-rc1, when running on s390, does not properly clear a kernel buffer, which allows local user space programs to read portions of kernel memory by "appending to a file from a bad address," which triggers a fault that...