Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ffmpeg (UTSA-2025-936091)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-936091 advisory. A Denial of Service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ffframepoolget function in framepool.c. Tenable has extracted the preceding...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986981)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986981 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Fix use-after-free bug for mm struct Under certain conditions, such as MPIAbort, the...

Unity Linux 20.1070a Security Update: firefox (UTSA-2025-987419)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987419 advisory. Memory safety bug present in Firefox ESR 128.10, and Thunderbird 128.10. This bug showed evidence of memory corruption and we presume that with enough effort this...

Unity Linux 20.1070e Security Update: bluez (UTSA-2025-680604)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680604 advisory. BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414382)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414382 advisory. An issue was discovered in the Linux kernel through 5.18.14. xfrmexpandpolicies in net/xfrm/xfrmpolicy.c can cause a refcount to be dropped twice. Tenable has...

Unity Linux 20.1070e Security Update: uboot-tools (UTSA-2025-680593)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680593 advisory. There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986352)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986352 advisory. In the Linux kernel, the following vulnerability has been resolved: net/rds: fix possible cp null dereference cp might be null, calling cp-cpconn would produce null...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414529)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414529 advisory. A use-after-free read flaw was found in sockgetsockopt in net/core/sock.c due to SOPEERCRED and SOPEERGROUPS race with listen and connect in the Linux kernel. In thi...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987364)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987364 advisory. In the Linux kernel, the following vulnerability has been resolved: sfc: fix null pointer dereference in efxhardstartxmit Trying to get the channel from the txqueue...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414642)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414642 advisory. An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsitransport structure. When an iSCSI...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986372)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986372 advisory. In the Linux kernel, the following vulnerability has been resolved: regulator: da9211: Use irq handler when ready If the system does not come from reset like when it...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987190)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987190 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: actskbmod: Skip non-Ethernet packets Currently tcfskbmodact assumes that packets use...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987037)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987037 advisory. In the Linux kernel, the following vulnerability has been resolved: memory: fslifc: fix leak of IO mapping on probe failure On probe error the driver should unmap th...

Unity Linux 20.1070e Security Update: nasm (UTSA-2025-984703)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-984703 advisory. Null pointer dereference in ieeewritefile in nasm 2.16rc0 allows attackers to cause a denial of service crash. Tenable has extracted the preceding description block...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986314)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986314 advisory. In the Linux kernel, the following vulnerability has been resolved: ethernet: hisilicon: hns: hnsdsafmisc: fix a possible array overflow in hnsdsafgesrstbyport The i...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986934)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986934 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: fix memory leak in sctpstreamoutqmigrate When sctpstreamoutqmigrate is called to release...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ffmpeg (UTSA-2025-936102)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-936102 advisory. A heap-based Buffer Overflow vulnerability exists FFmpeg 4.2 at libavfilter/vffloodfill.c, which might lead to memory corruption and other potential consequences...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986970)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986970 advisory. In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414512)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414512 advisory. Non-transparent sharing of branch predictor within a context in some IntelR Processors may allow an authorized user to potentially enable information disclosure via...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987173)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987173 advisory. In the Linux kernel, the following vulnerability has been resolved: ipw2x00: Fix potential NULL dereference in libipwxmit crypt and crypt-ops could be null, so we ne...