Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 — Análisis Técnico Completo Clasificación:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012984)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012984 advisory. In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC The referenced commit...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001254)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001254 advisory. The oomreaptaskmm function in mm/oomkill.c in the Linux kernel before 4.14.4 mishandles gather operations, which allows attackers to cause a denial of service TLB...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003231)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003231 advisory. The oomreaptaskmm function in mm/oomkill.c in the Linux kernel before 4.14.4 mishandles gather operations, which allows attackers to cause a denial of service TLB...

CVE-2025-40126

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respectiv...

UBUNTU-CVE-2025-40126

In the Linux kernel, the following vulnerability has been resolved: sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC The referenced commit introduced exception handlers on user-space memory references in copyfromuser and copytouser. These handlers return from the respectiv...

CVE-2025-40124

CVE-2025-40124 pertains to the Linux kernel on SPARC, where a BUG_ON in ext4 caused copy_from_user() to report impossible copy sizes when large folios were enabled, leading to faulty __copy_from_iter() results. The root cause involved copy_from_user()/copy_to_user exception handlers that relied o...

Linux Distros Unpatched Vulnerability : CVE-2025-40124

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sparc: fix accurate exception reporting in copyfromtouser for UltraSPARC III Anthony Yznaga tracked down that a BUGON in ext4 code with large folios enabled...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989894)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989894 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data on failure Wipe sensitive data from stack also if the copytouser...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990297)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990297 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data on failure Wipe sensitive data from stack also if the copytouser...

CVE-2025-40035

CVE-2025-40035 (Linux kernel) affects the input subsystem (uinput). The vulnerability arises from how struct ff_effect_compat is embedded twice inside uinput_ff_upload_compat, creating a padding hole after ff_replay. If the structure is not cleared before copy_to_user, stack data may be leaked to...

Linux Distros Unpatched Vulnerability : CVE-2025-40035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Input: uinput - zero-initialize uinputffuploadcompat to avoid info leak Struct ffeffectcompat is embedded twice inside uinputffuploadcompat, contains internal...

CVE-2022-49272

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential AB/BA lock with buffermutex and mmaplock syzbot caught a potential deadlock between the PCM runtime-buffermutex and the mm-mmaplock. It was brought by the recent fix to cover the racy read/write and other...

CVE-2024-46774

In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: Prevent Spectre v1 gadget construction in sysrtas Smatch warns: arch/powerpc/kernel/rtas.c:1932 dosysrtas warn: potential spectre issue 'args.args' r local cap The 'nargs' and 'nret' locals come directly from a...

CVE-2024-42157

A vulnerability was found in the Linux kernel's s390 crypto driver, where improper secret management can lead to a situation where sensitive key material is not wiped from the stack when the copytouser function fails. This could lead to sensitive information disclosure. Mitigation Mitigation for...

CVE-2024-42157 s390/pkey: Wipe sensitive data on failure

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data on failure Wipe sensitive data from stack also if the copytouser fails...

The vulnerability of the `copy_to_user` function in the s390 kernel of the Linux operating system allows a hacker to disclose protected information.

The vulnerability of the copytouser function in the s390 kernel of the Linux operating system is related to buffer overflows in the stack. Exploiting this vulnerability can allow an attacker to disclose sensitive information that is protected by security measures...

CVE-2024-40978 scsi: qedi: Fix crash while reading debugfs attribute

In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix crash while reading debugfs attribute The qedidbgdonotrecovercmdread function invokes sprintf directly on a user pointer, which results into the crash. To fix this issue, use a small local stack buffer for sprintf...

CVE-2024-40913 cachefiles: defer exposing anon_fd until after copy_to_user() succeeds

In the Linux kernel, the following vulnerability has been resolved: cachefiles: defer exposing anonfd until after copytouser succeeds After installing the anonymous fd, we can now see it in userland and close it. However, at this point we may not have gotten the reference count of the cache, but ...

CVE-2024-40913

Technical details for CVE-2024-40913 are not provided in the supplied documents. Monitor for updates from vendors/advisories.