Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002994)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002994 advisory. The ringbufferresize function in kernel/trace/ringbuffer.c in the profiling subsystem in the Linux kernel before 4.6.1 mishandles certain integer calculations, which...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002408)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002408 advisory. Race condition in the mac80211 subsystem in the Linux kernel before 3.13.7 allows remote attackers to cause a denial of service system crash via network traffic that...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002469)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002469 advisory. arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002238)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002238 advisory. Integer overflow in drivers/gpu/drm/i915/i915gemexecbuffer.c in the i915 driver in the Direct Rendering Manager DRM subsystem in the Linux kernel through 3.8.3, as...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002635)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002635 advisory. Use-after-free vulnerability in the sndpcminfo function in the ALSA subsystem in the Linux kernel allows attackers to gain privileges via unspecified vectors. Tenabl...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002132)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002132 advisory. drivers/hid/hid-picolcdcore.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDPICOLCD is enabled, allows physically...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002358)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002358 advisory. drivers/hid/hid-logitech-dj.c in the Human Interface Device HID subsystem in the Linux kernel through 3.11, when CONFIGHIDLOGITECHDJ is enabled, allows physically...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001874)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001874 advisory. Integer overflow in the sndcomprallocatebuffer function in sound/core/compressoffload.c in the ALSA subsystem in the Linux kernel before 3.6-rc6-next-20120917 allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002783)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002783 advisory. Race condition in the sndpcmperiodelapsed function in sound/core/pcmlib.c in the ALSA subsystem in the Linux kernel before 4.7 allows local users to cause a denial o...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003067)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003067 advisory. An information disclosure vulnerability in kernel components including the ION subsystem, Binder, USB driver and networking subsystem could enable a local malicious...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003262)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003262 advisory. A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The null skcipher was being dropped when each afalgctx was freed instead...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002430)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002430 advisory. kernel/trace/tracesyscalls.c in the Linux kernel through 3.17.2 does not properly handle private syscall numbers during use of the ftrace subsystem, which allows loc...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002677)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002677 advisory. The KEYS subsystem in the Linux kernel before 4.13.10 does not correctly synchronize the actions of updating versus finding a key in the negative state to avoid a ra...

CVE-2026-20827

Exposure of sensitive information to an unauthorized actor in Tablet Windows User Interface TWINUI Subsystem allows an authorized attacker to disclose information locally...

kernel: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync

A flaw was found in the Linux kernel’s Bluetooth subsystem HCI. Specifically, in the function hciaclcreateconnsync and related path hcilecreateconnsync, a connection object in state BTOPEN that is still pending command submission may be freed prematurely, leading to a use-after-free condition. An...

SUSE CVE-2025-71079

In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix deadlock between nfcunregisterdevice and rfkillfopwrite A deadlock can occur between nfcunregisterdevice and rfkillfopwrite due to lock ordering inversion between devicelock and rfkillglobalmutex. The problematic lo...

kernel: media: rc: fix races with imon_disconnect()

A use-after-free flaw exists in the Linux kernel’s media/rc subsystem. When the device is disconnected via imondisconnect, the driver may unconditionally release a usbdevice reference via usbputdev even while other operations such as vfdwrite, sendpacket, displayopen, lcdwrite are still in...

kernel: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync

A flaw was found in the Linux kernel’s Bluetooth subsystem HCI. Specifically, in the function hciaclcreateconnsync and related path hcilecreateconnsync, a connection object in state BTOPEN that is still pending command submission may be freed prematurely, leading to a use-after-free condition. An...

kernel: Bluetooth: hci_event: Fix UAF in hci_acl_create_conn_sync

A flaw was found in the Linux kernel’s Bluetooth subsystem HCI. Specifically, in the function hciaclcreateconnsync and related path hcilecreateconnsync, a connection object in state BTOPEN that is still pending command submission may be freed prematurely, leading to a use-after-free condition. An...

ROS-20260114-7325

A vulnerability in the sound/core/seq/oss/seqosssynth.c module of the Linux operating system kernel is related to synchronization errors when using a shared resource "Race Situation" when processing SysEx messages. Exploitation of the vulnerability could allow an attacker to cause a denial of...