USN-8177-1: Linux kernel vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007254)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007254 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Remove spinlockbh while releasing resources after upload The session resources are...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007564)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007564 advisory. In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: display: Fix refcount leak bug In omapdssinitfbdev, offindnodebyname will return a...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007616)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007616 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Fix out-of-bound read in respreporttgtpgs The following issue was observed runni...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007332)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007332 advisory. A flaw was found in the filelockinit in fs/locks.c function in the Linux kernel. This issue can lead to host memory exhaustion due to memcg not limiting the number o...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007267)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007267 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix double module refcount decrement Once the discipline is associated with the device...

USN-8180-1 linux, linux-aws, linux-aws-5.15, linux-gcp, linux-gke, linux-gkeop, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-oracle vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Drivers core; - Bluetooth drivers; - DMA engine subsystem; - GPU...

CVE-2026-26155

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability...

EUVD-2026-22629

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

EUVD-2026-22496

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an unauthorized attacker to deny service over a network...

EUVD-2026-22378

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability...

CVE-2026-33104

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

CVE-2026-26155

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability...

CVE-2026-26155 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

...

CVE-2026-26155 Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

...

CVE-2026-26155

CVE-2026-26155 is a Microsoft Local Security Authority Subsystem Service information disclosure vulnerability. The entry lists a CVSS v3.1 base score 6.5 (MEDIUM) with vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N, indicating a Network attack vector, low complexity , and low privileges requ...

Win32k Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

...

PT-2026-32735

Name of the Vulnerable Software and Affected Versions Microsoft Local Security Authority Subsystem Service affected versions not specified Description An issue exists that allows attackers to obtain sensitive information and affect the system. Recommendations At the moment, there is no informatio...

Microsoft Windows Local Security Authority Subsystem Service 安全漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal program of the American company Microsoft, responsible for implementing Windows system security policies. It verifies user identities when a computer or server is logged in, manages user password changes, and generate...