CVE-2025-12489

evernote-mcp-server openBrowser Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of evernote-mcp-server. An attacker must first obtain the ability to execute low-privileged code on the target system in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990387)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990387 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setuptxdescriptors After PF reset and ethtool -t there was call trace in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990533)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990533 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc The call to lpfcsli4resumerpi in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989586)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989586 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setuptxdescriptors After PF reset and ethtool -t there was call trace in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989415)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989415 advisory. In the Linux kernel, the following vulnerability has been resolved: sched/scs: Reset task stack state in bringupcpu To hot unplug a CPU, the idle task on that CPU...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989337)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989337 advisory. In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setuptxdescriptors After PF reset and ethtool -t there was call trace in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990140)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990140 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: free inode when ocfs2getinitinode fails syzbot is reporting busy inodes after unmount, for...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-989919)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989919 advisory. In the Linux kernel, the following vulnerability has been resolved: xprtrdma: treat all calls not a bcall when bcserv is NULL When a rdma server returns a fault form...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990211)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990211 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: free inode when ocfs2getinitinode fails syzbot is reporting busy inodes after unmount, for...

PT-2025-48308

Name of the Vulnerable Software and Affected Versions Huawei HarmonyOS versions 5.0.1 through 5.1.0 Huawei HarmonyOS version 6.0.0 Description An improper criterion security check exists within the call module. Successful exploitation of this issue may cause features to perform abnormally...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989242)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989242 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: ftrace: consistently handle PLTs. Sometimes it is necessary to use a PLT entry to call an...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990085)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990085 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4openowner leak when concurrent nfsd4open occur The action force umountumount -f wil...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989888)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989888 advisory. In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 net: lapbether: only support...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989017)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989017 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: dmi-sysfs: Fix memory leak in dmisysfsregisterhandle kobjectinitandadd takes reference...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989281)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989281 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Add stagwork to all the vports Call trace seen when creating NPIV ports, only 32 out ...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990212)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990212 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: fix information leak in btrfsioctllogicaltoino Syzbot reported the following information...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989745)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989745 advisory. In the Linux kernel, the following vulnerability has been resolved: media: venus: hfi: avoid null dereference in deinit If venusprobe fails at pmruntimeputsync the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988725)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988725 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix tailcallreachable rejection for interpreter when jit failed During testing of f263a81451...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989006)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989006 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call timer start racing with call destruction The rxrpccall struct has a timer used to...

Microsoft Teams Bugs Let Attackers Impersonate Colleagues and Edit Messages Unnoticed

Cybersecurity researchers have disclosed details of four security flaws in Microsoft Teams that could have exposed users to serious impersonation and social engineering attacks. The vulnerabilities "allowed attackers to manipulate conversations, impersonate colleagues, and exploit notifications,"...