Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990505)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990505 advisory. In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 filelock:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988776)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988776 advisory. In the Linux kernel, the following vulnerability has been resolved: net: hamradio: fix memory leak in mkissclose My local syzbot instance hit memory leak in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988793)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988793 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: core: fix transmit-buffer reset and memleak Commit 761ed4a94582 tty: serialcore: convert...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990328)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990328 advisory. In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayedwork and cephmoncstop The way the delayed work is handled in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990121)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990121 advisory. In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 filelock:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990295)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990295 advisory. In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 filelock:...

CVE-2025-62935

Missing Authorization vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Open Close WooCommerce Store: from n/a through = 5.0.0...

EUVD-2025-36006

Missing Authorization vulnerability in ilmosys Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Open Close WooCommerce Store: from n/a through = 4.9.8...

CVE-2025-62935

Missing Authorization vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Open Close WooCommerce Store: from n/a through = 5.0.0...

CVE-2025-62935 WordPress Open Close WooCommerce Store plugin <= 5.0.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Open Close WooCommerce Store: from n/a through = 5.0.0...

CVE-2025-62935 WordPress Open Close WooCommerce Store plugin <= 5.0.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in StackWC Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Open Close WooCommerce Store: from n/a through = 5.0.0...

CVE-2025-62935

CVE-2025-62935 is a missing/broken authorization vulnerability in the WordPress plugin "Open Close Store for WooCommerce" (woc-open-close). Connected sources confirm a Broken Access Control / Missing Authorization issue affecting Open Close WooCommerce Store: affected versions include up to 5.0.0...

PT-2025-43811

Missing Authorization vulnerability in ilmosys Open Close WooCommerce Store woc-open-close allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Open Close WooCommerce Store: from n/a through = 4.9.8...

Linux Distros Unpatched Vulnerability : CVE-2025-40017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix memory leak by freeing untracked persist buffer One internal buffer which i...

WordPress plugin Open Close WooCommerce Store security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, with the ability to host personal blog sites on PHP and MySQL based servers.WordPress...

OESA-2025-2536 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: net: ravb: Fix missing rtnl lock in suspend/resume path Fix the suspend/resume path by ensuring the rtnl lock is held where required. Calls to ravbopen, ravbclos...

PT-2025-49435

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the btrfs file system related to handling dirty metadata when the file system encounters errors. Specifically, if btrfs experiences an error, the...

SUSE CVE-2023-53698

In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is running out of memory. If xpalloctxdescs fails, and it can only fail due to not having enough memory,...

SUSE CVE-2025-62409

Envoy is a cloud-native, open source edge and service proxy. Prior to 1.36.1, 1.35.5, 1.34.9, and 1.33.10, large requests and responses can potentially trigger TCP connection pool crashes due to flow control management in Envoy. It will happen when the connection is closing but upstream data is...

SUSE CVE-2025-40017

In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix memory leak by freeing untracked persist buffer One internal buffer which is allocated only once per session was not being freed during session close because it was not being tracked as part of internal buffer li...