glibc security update

2.39-58.0.1.7 - Forward port Oracle changes to 2.39-58.7. - Reviewed-by: David Faust Oracle history: November-26-2025 Cupertino Miranda - 2.39-58.0.1.2 - Forward port Oracle changes to 2.39-58.2. - Reviewed-by: Jose E. Marchesi September-29-2025 David Faust - 2.39-58.0.1 - Forward port Oracle...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005138)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005138 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from...

Fedora 42 : glibc (2026-a2f3af8a86)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a2f3af8a86 advisory. This update switches the currency symbol for Bulgaria to the Euro. Furthermore, it addresses several security vulnerabilities: A crash when wordexp ...

VB-Audio Matrix security vulnerabilities

VB-Audio Matrix is a real-time audio routing software developed by the French company VB-Audio. Versions of VB-Audio Matrix 1.0.2.2 and earlier, as well as 2.0.2.2 and earlier versions, contain security vulnerabilities. These vulnerabilities stem from the VBMatrix VAIO virtual audio driver, where...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50022)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50022 advisory. - In the Linux kernel, the following vulnerability has been resolved: device-dax: correct pgoff align in...

Azure Linux 3.0 Security Update: kernel (CVE-2025-37922)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37922 advisory. - In the Linux kernel, the following vulnerability has been resolved: book3s64/radix : Align section vmemmap...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22033)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22033 advisory. - In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in...

Azure Linux 3.0 Security Update: librsvg2 (CVE-2022-23639)

The version of librsvg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-23639 advisory. - crossbeam-utils provides atomics, synchronization primitives, scoped threads, and other utilities for...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22049)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22049 advisory. - In the Linux kernel, the following vulnerability has been resolved: LoongArch: Increase ARCHDMAMINALIGN up t...

Azure Linux 3.0 Security Update: kernel (CVE-2024-45001)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45001 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix RX buf allocsize alignmen...

ROS-20260121-73-0030

A vulnerability in the compatalignment.c component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

SUSE CVE-2026-0861

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...

MiracleLinux 4 : mailman-2.1.12-25.AXS4 (AXSA:2015-303:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2015-303:01 advisory. Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailin...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000879)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000879 advisory. The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service host OS panic or hang by...

CVE-2026-0861

A flaw was found in the glibc library. Passing an excessively large alignment value to the memalign suite of functions, such as memalign, posixmemalign, alignedalloc, valloc and pvalloc, an integer overflow can occur during internal size calculations due to improper overflow checks, causing an...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002619)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002619 advisory. kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003403)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003403 advisory. kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001841)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001841 advisory. The KVM subsystem in the Linux kernel through 4.2.6, and Xen 4.3.x through 4.6.x, allows guest OS users to cause a denial of service host OS panic or hang by...

DEBIAN-CVE-2026-0861

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...

CVE-2026-0861

Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have control over both, the size a...