PT-2026-26578

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-rc8+ 33 Description The Linux kernel contains a flaw within the macvlan module. Specifically, a race condition exists in the macvlan common newlink function's error path, potentially leading to a...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993262)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993262 advisory. In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 net/core: Add...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993252)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993252 advisory. In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribu...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992792)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992792 advisory. In the Linux kernel, the following vulnerability has been resolved: net: genl: fix error path memory leak in policy dumping If construction of the array of policies...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992888)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992888 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix geneveopt length integer overflow struct geneveopt uses 5 bit length for each single...

CVE-2022-50854 nfc: virtual_ncidev: Fix memory leak in virtual_nci_send()

In the Linux kernel, the following vulnerability has been resolved: nfc: virtualncidev: Fix memory leak in virtualncisend skb should be free in virtualncisend, otherwise kmemleak will report memleak. Steps for reproduction simulated in qemu: cd tools/testing/selftests/nci make ./ncidev BUG: memor...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992444)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992444 advisory. In the Linux kernel, the following vulnerability has been resolved: net: genl: fix error path memory leak in policy dumping If construction of the array of policies...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992698)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992698 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix geneveopt length integer overflow struct geneveopt uses 5 bit length for each single...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992664)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992664 advisory. In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 net/core: Add...

CLSA-2025-1766599987 kernel: Fix of 27 CVEs

xfrm: Duplicate SPI Handling CVE-2025-39965 - xfrm: state: use atomicincnotzero to increment refcount - padata: Fix pd UAF once and for all CVE-2025-38584 - padata: Remove broken queue flushing CVE-2023-52854 - padata: ensure padatadoserial runs on the correct CPU - Bluetooth: L2CAP: Fix...

CVE-2023-54031

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

SUSE CVE-2023-54037

In the Linux kernel, the following vulnerability has been resolved: ice: prevent NULL pointer deref during reload Calling ethtool during reload can lead to call trace, because VSI isn't configured for some time, but netdev is alive. To fix it add rtnl lock for VSI deconfig and config. Set...

Linux Distros Unpatched Vulnerability : CVE-2023-54031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It...

CVE-2023-54031

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

CVE-2023-54031

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

UBUNTU-CVE-2023-54031

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

CVE-2023-54000 net: hns3: fix deadlock issue when externel_lb and reset are executed together

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix deadlock issue when externellb and reset are executed together When externellb and reset are executed together, a deadlock may occur: 3147.217009 INFO: task kworker/u321:0:7 blocked for more than 120 seconds...

CVE-2025-68366

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config unlock in nbdgenlconnect There is one use-after-free warning when running NBDCMDCONNECT and NBDCLEARSOCK: nbdgenlconnect nbdallocandinitconfig // configrefs=1 nbdstartdevice // configrefs=2 set NBDRTHASCONFIGREF...

PT-2025-52988

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the vdpa Virtual Data Path Acceleration component. The vdpa nl policy structure, used for validating attributes during network message nlmsg...

SUSE CVE-2025-68263

In the Linux kernel, the following vulnerability has been resolved: ksmbd: ipc: fix use-after-free in ipcmsgsendrequest ipcmsgsendrequest waits for a generic netlink reply using an ipcmsgtableentry on the stack. The generic netlink handler handlegenericevent/handleresponse fills entry-response...