Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011252)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011252 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006974)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006974 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/gntdev: Accommodate VMA splitting Prior to this commit, the gntdev driver code did not handle...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013052)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013052 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-011374)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011374 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix an infinite loop error when len is 0 in tcpbpfrecvmsgparser When the buffer...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011222)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011222 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix memory leak in ocfs2mountvolume There is a memory leak reported by kmemleak:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013041)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013041 advisory. In the Linux kernel, the following vulnerability has been resolved: mptcp: Fix proto fallback detection with BPF The sockmap feature allows bpf syscall from userspac...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010969)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010969 advisory. In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix pciendpointtestcopy,write,read panic The dmamapsingle doesn't permit...

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-010885)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010885 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: add idatasem protection in ext4destroyinlinedatanolock Fix a race between inline data...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013360)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013360 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/mm/identmap: Use gbpages only where full GB page should be mapped. When identpudinit uses onl...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011131)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011131 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/MCE/AMD: Use an u64 for bankmap Thee maximum number of MCA banks is 64 MAXNRBANKS, see...

SUSE-SU-2026:21356-1 Security update for go1.26

This update for go1.26 fixes the following issues: - Update to version go1.26.2 bsc1255111. - CVE-2026-27140: cmd/go: trust layer bypass when using cgo and SWIG bsc1261653. - CVE-2026-27143: cmd/compile: possible memory corruption after bound check elimination bsc1261654. - CVE-2026-27144:...

CVE-2026-40572

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 15 MemoryMapRange allows Ring 3 user-mode processes to map arbitrary virtual address ranges into their address space without validating against forbidden regions, including critical...

Exploit for CVE-2007-2447

Samba-CVE-2007-244...

Exploit for CVE-2007-2447

Samba CVE-2007-2447 Exploit Username Map Script Este reposi...

SUSE-SU-2026:21211-1 Security update for xwayland

This update for xwayland fixes the following issues: - CVE-2026-33999: XKB Integer Underflow in XkbSetCompatMap bsc1260922. - CVE-2026-34000: XKB Out-of-bounds Read in CheckSetGeom bsc1260923. - CVE-2026-34001: XSYNC Use-after-free in miSyncTriggerFence bsc1260924. - CVE-2026-34002: XKB...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007432)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007432 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: don't drop extentmap for free space inode on write error While running the CI for an...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007424)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007424 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007390)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007390 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: fix idx validation in i40evalidatequeuemap Ensure idx is within range of active/initialized...

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the ConfigMap context loader due to missing validation of the namespace value. An attacker can access sensitive data from ConfigMaps in unauthorized namespaces by creating a policy that references another...

CVE-2026-3581

The Basic Google Maps Placemarks plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 1.10.7. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for unauthenticated attackers to modify...