Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001316)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001316 advisory. The usbgetbosdescriptor function in drivers/usb/core/config.c in the Linux kernel before 4.13.10 allows local users to cause a denial of service out-of-bounds read a...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004135)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004135 advisory. In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka...

MiracleLinux 4 : ccid-1.3.9-6.AXS4 (AXSA:2013-120:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2013-120:01 advisory. Generic USB CCID Chip/Smart Card Interface Devices driver. Security issues fixed with this release: CVE-2010-4530 Signedness error in ccidserial.c in libccid ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003690)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003690 advisory. An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver. Tenable ha...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004296)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004296 advisory. In the Linux kernel before 5.3.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka...

spi: fsl-cpm: Check length parity before switching to 16 bit mode

...

ALSA: usb-mixer: us16x08: validate meter packet indices

...

usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal

...

CVE-2025-68781

In the Linux kernel, the following vulnerability has been resolved: usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal The delayed work item otgevent is initialized in fslotgconf and scheduled under two conditions: 1. When a host controller binds to the OTG controller. 2...

[SECURITY] Fedora 43 Update: gpsd-3.26.1-6.fc43

gpsd is a service daemon that mediates access to a GPS sensor connected to the host computer by serial or USB interface, making its data on the location/course/velocity of the sensor available to be queried on TCP port 2947 of the host computer. With gpsd, multiple GPS client applications such as...

EUVD-2025-206289

A potential vulnerability was reported in some ThinkPlus USB drives that could allow a user with physical access to read data stored on the drive...

SUSE CVE-2025-68781

In the Linux kernel, the following vulnerability has been resolved: usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal The delayed work item otgevent is initialized in fslotgconf and scheduled under two conditions: 1. When a host controller binds to the OTG controller. 2...

CVE-2025-67399

An issue in AIRTH SMART HOME AQI MONITOR Bootloader v.1.005 allows a physically proximate attacker to obtain sensitive information via the UART port of the BK7231N controller Wi-Fi and BLE module on the device is open to access...

CVE-2025-65396

A vulnerability in the boot process of Blurams Flare Camera version 24.1114.151.929 and earlier allows a physically proximate attacker to hijack the boot mechanism and gain a bootloader shell via the UART interface. This is achieved by inducing a read error from the SPI flash memory during the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003272)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003272 advisory. drivers/media/usb/dvb-usb/cxusb.c in the Linux kernel 4.9.x and 4.10.x before 4.10.12 interacts incorrectly with the CONFIGVMAPSTACK option, which allows local users...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001867)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001867 advisory. Multiple buffer overflows in the commandportreadcallback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003064)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003064 advisory. The iowarriorprobe function in drivers/usb/misc/iowarrior.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service NULL...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002151)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002151 advisory. The aiptekprobe function in drivers/input/tablet/aiptek.c in the Linux kernel before 4.4 allows physically proximate attackers to cause a denial of service NULL...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003513)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003513 advisory. Memory leak in the sassmpgetphyevents function in drivers/scsi/libsas/sasexpander.c in the Linux kernel through 4.15.7 allows local users to cause a denial of servic...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003195)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003195 advisory. The imspcugetcdcuniondesc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service...