Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006800)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006800 advisory. In the Linux kernel, the following vulnerability has been resolved: vfio/platform: Create persistent IRQ handlers The vfio-platform SETIRQS ioctl currently allows...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006797)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006797 advisory. In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006737)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006737 advisory. In the Linux kernel, the following vulnerability has been resolved: libceph: make freechooseargmap resilient to partial allocation freechooseargmap may dereference a...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006617)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006617 advisory. In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix null-ptr-deref of mreplace in raid10syncrequest There are two check of 'mreplace' ...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006671)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006671 advisory. In the Linux kernel, the following vulnerability has been resolved: ata: libata-transport: fix error handling in atatdevadd In atatdevadd, the return value of...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006832)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006832 advisory. In the Linux kernel, the following vulnerability has been resolved: tee: fix NULL pointer dereference in teeshmput teeshmput have NULL pointer dereference:...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006769)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006769 advisory. In the Linux kernel, the following vulnerability has been resolved: pcmcia: Fix a NULL pointer dereference in iodynfindioregion In iodynfindioregion,...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006572)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006572 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: Fix possible NULL dereference in sndac97mixer smatch error:...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006689)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006689 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/i915/gvt: fix vgpu debugfs clean in remove Check carefully on root debugfs available when...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006661)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006661 advisory. In the Linux kernel, the following vulnerability has been resolved: virtionet: fix memory leak inside XPDTX with mergeable When we call xdpconvertbufftoframe to get...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006632)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006632 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix null-ptr-deref in ibcorecleanup KASAN reported a null-ptr-deref error: KASAN:...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006606)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006606 advisory. In the Linux kernel, the following vulnerability has been resolved: kobject: Add sanity check for kset-kobj.ktype in ksetregister When I register a kset in the...

SUSE CVE-2026-28388

Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CRL Number extension is missing. Impact summary: A NULL pointer dereference can trigger a crash which leads to a Denial of Service for an application...

SUSE CVE-2026-28389

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denial of...

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the delta CRL processing when the required CRLNumber extension is missing. An attacker can cause an application crash by supplying a specially crafted malformed CRL file. Note: This is only exploitable if the...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the CMSdecrypt function. An attacker can cause a crash by submitting a crafted CMS EnvelopedData message with a missing optional parameters field in the RSA-OAEP SourceFunc algorithm identifier. Notes: - This...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the CMSdecrypt function. An attacker can cause a crash by submitting a specially crafted CMS EnvelopedData message with a missing optional parameters field in the KeyEncryptionAlgorithmIdentifier, leading to ...

CVE-2026-28389

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denial of...

DEBIAN-CVE-2026-28389

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denial of...