Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001638)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001638 advisory. In all Qualcomm products with Android releases from CAF using the Linux kernel, during DMA allocation, due to wrong data type of size, allocation size gets truncated...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003544)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003544 advisory. An issue was discovered in the nsgetpath function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003525)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003525 advisory. An issue was discovered in the nsgetpath function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free...

Design/Logic Flaw

A bool variable in Video function, which gets typecasted to int before being read could result in an out of bound read access in all Android releases from CAF using the linux kernel...

DEBIAN-CVE-2018-5873

An issue was discovered in the nsgetpath function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can occur. This also affects all Android releases from CAF using the Linux kernel Android for MSM, Firefox OS for MSM, QRD Andro...

CVE-2018-3587

In a firmware memory dump feature in all Android releases from CAF using the Linux kernel Android for MSM, Firefox OS for MSM, QRD Android, a Use After Free condition can occur...

Design/Logic Flaw

While parsing over-the-air information elements in all Android releases from CAF using the Linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-07-05, the use of an out-of-range pointer offset can occur...

Race condition

In a firmware memory dump feature in all Android releases from CAF using the Linux kernel Android for MSM, Firefox OS for MSM, QRD Android, a Use After Free condition can occur...

CVE-2018-5859

CVE-2018-5859 describes a race-condition–driven use-after-free in the MDSS MDP driver used by CAF Android builds on the Linux kernel, prior to the 2018-07-05 patch level. The issue can trigger a Use After Free condition on affected devices (Android for MSM, Firefox OS for MSM, QRD Android). Affec...

CVE-2018-5897

While reading the data from buffer in dciprocessctrlstatus there can be buffer over-read problem if the len is not checked correctly in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...

CVE-2018-5830

While processing the HTTT2HMSGTYPEMGMTTXCOMPLIND message, a buffer overflow can potentially occur in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...

CVE-2018-5829

In wlanhddcfg80211setprivacyibss in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, a buffer over-read can potentially occur...

Race condition

Due to a race condition while processing the power stats debug file to read status, a double free condition can occur in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...

Buffer overflow

Buffer over-read may happen in wmaprocessutfevent due to improper buffer length validation before writing into parambuf-numwowpacketbuffer in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...

CVE-2018-3564

In the FastRPC driver in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, a Use After Free condition can occur when mapping on the remote processor fails...

Out-of-bounds

While processing the USB StrSerialDescriptor array, an array index out of bounds can occur in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...

Design/Logic Flaw

In the ADSP RPC driver in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, an arbitrary kernel write can occur...

CVE-2018-5836

In wmananrspeventhandler in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, the datalen value is received from firmware and not properly validated which could potentially lead to an out-of-bounds access...

CVE-2018-5832

Due to a race condition in a camera driver ioctl handler in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05, a Use After Free condition can occur...

CVE-2018-3577

While processing fragments, when the fragment count becomes very large, an integer overflow leading to a buffer overflow can occur in Android releases from CAF using the linux kernel Android for MSM, Firefox OS for MSM, QRD Android before security patch level 2018-06-05...