net/handshake: duplicate handshake cancellations leak socket

...

CVE-2025-68775

A race condition flaw was found in the Linux kernel's network handshake subsystem. When duplicate handshake cancellation requests arrive for the same TLS handshake such as during SUNRPC/NFS TLS negotiation timeouts, the code fails to detect the duplicate and incorrectly manipulates the socket...

SUSE CVE-2025-68775

In the Linux kernel, the following vulnerability has been resolved: net/handshake: duplicate handshake cancellations leak socket When a handshake request is cancelled it is removed from the handshakenet-hnrequests list, but it is still present in the handshakerhashtbl until it is destroyed. If a...

CVE-2025-68768

In the Linux kernel, the following vulnerability has been resolved: inet: frags: flush pending skbs in fqdirpreexit We have been seeing occasional deadlocks on pernetopsrwsem since September in NIPA. The stuck task was usually modprobe often loading a driver like ipvlan, trying to take the lock a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002455)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002455 advisory. The PPPoL2TP feature in net/l2tp/l2tpppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002019)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002019 advisory. The iucvsockrecvmsg function in net/iucv/afiucv.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtai...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003245)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003245 advisory. The ip6find1stfragopt function in net/ipv6/outputcore.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service integer overflow and...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003493)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003493 advisory. Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002422 advisory. Race condition in net/sctp/socket.c in the Linux kernel before 4.1.2 allows local users to cause a denial of service list corruption and panic via a rapid series of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003087)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003087 advisory. An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002141)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002141 advisory. The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001805)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001805 advisory. The driverrfc4106decrypt function in arch/x86/crypto/aesni-intelglue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002450)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002450 advisory. crypto/algifskcipher.c in the Linux kernel before 4.4.2 does not verify that a setkey operation has been performed on an AFALG socket before an accept system call is...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002209)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002209 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002038)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002038 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002320)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002320 advisory. The pingunhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allow...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002373)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002373 advisory. The iucvsockrecvmsg function in net/iucv/afiucv.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtai...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003418)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003418 advisory. The mqnotify function in the Linux kernel through 4.11.9 does not set the sock pointer to NULL upon entry into the retry logic. During a user-space close of a Netlin...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002732)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002732 advisory. In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor,...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003052)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003052 advisory. The sctpdopeeloff function in net/sctp/socket.c in the Linux kernel before 4.14 does not check whether the intended netns is used in a peel-off action, which allows...