Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991201)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991201 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci-pci: Fix possible memory leak caused by missing pcidevput pcigetdevice will increase t...

CVE-2025-40316

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix device use-after-free on unbind A recent change fixed device reference leaks when looking up drm platform device driver data during bind but failed to remove a partial fix which had been added by commit...

CVE-2022-50659

A reference count leak was found in the AMD Geode hardware random number generator driver in the Linux kernel. When breaking out of the foreachpcidev loop early, the driver fails to call pcidevput to decrement the PCI device reference count, leading to a memory leak that could exhaust system...

SUSE CVE-2023-53779

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

EUVD-2022-55746

In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count fo...

EUVD-2023-60127

In the Linux kernel, the following vulnerability has been resolved: mfd: dln2: Fix memory leak in dln2probe When dln2setuprxurbs in dln2probe fails, error outfree forgets to call usbputdev to decrease the refcount of dln2-usbdev. Fix this by adding usbputdev in the error handling code of dln2prob...

CVE-2022-50659

In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count fo...

SUSE CVE-2023-53759

In the Linux kernel, the following vulnerability has been resolved: HID: hidraw: fix data race on device refcount The hidrawopen function increments the hidraw device reference counter. The counter has no dedicated synchronization mechanism, resulting in a potential data race when concurrently...

PT-2025-49690

In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak for each pci dev is implemented by pci get device. The comment of pci get device says that it will increase the reference count for the returned pci dev and also decrease the reference...

EUVD-2025-201629

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix device use-after-free on unbind A recent change fixed device reference leaks when looking up drm platform device driver data during bind but failed to remove a partial fix which had been added by commit...

CVE-2023-53759

In the Linux kernel, the following vulnerability has been resolved: HID: hidraw: fix data race on device refcount The hidrawopen function increments the hidraw device reference counter. The counter has no dedicated synchronization mechanism, resulting in a potential data race when concurrently...

PT-2025-49489

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A data race exists in the hidraw open function concerning the hidraw device reference counter. This occurs because the reference counter lacks a dedicated synchronization mechanism,...

PT-2025-49456

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the snr uncore mmio map function within the perf/x86/intel/uncore module of the Linux kernel. The pci get device function increases the reference count f...

CVE-2025-40270

No description is available for this CVE. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability...

CVE-2025-40270 mm, swap: fix potential UAF issue for VMA readahead

In the Linux kernel, the following vulnerability has been resolved: mm, swap: fix potential UAF issue for VMA readahead Since commit 78524b05f1a3 "mm, swap: avoid redundant swap device pinning", the common helper for allocating and preparing a folio in the swap cache layer no longer tries to get ...

CVE-2025-40270

In the Linux kernel, the following vulnerability has been resolved: mm, swap: fix potential UAF issue for VMA readahead Since commit 78524b05f1a3 "mm, swap: avoid redundant swap device pinning", the common helper for allocating and preparing a folio in the swap cache layer no longer tries to get ...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988880)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988880 advisory. In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix pci device refcount leak As the comment of pcigetdomainbusandslot says, it returns a P...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989098)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989098 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fix reference leak in tegradsigangedprobe The reference taken by 'offinddevicebynode'...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989667)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989667 advisory. In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible memory leak in mISDNregisterdevice Afer commit 1fa5ae857bb1 driver core: get...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure safety against devlec changes. It appears that there were calls to devput without prior calls to devhold, leading to imbalance and UAF Use-After-Fault errors...