Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013354)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013354 advisory. In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in...

PT-2025-51573

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the SMC Stream Management Control subsystem that can lead to a general protection fault. Specifically, a crash can occur in the smc diag dump...

CVE-2025-40331

In the Linux kernel, the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exceed bounds in case the address list has grown between buffer allocatio...

CVE-2025-40331

The CVE-2025-40331 entry refers to a Linux kernel vulnerability in SCTP where a TOCTOU race could lead to an out-of-bounds write when the address list grows between buffer allocation and use in sctp_diag_dump() -> sctp_for_each_endpoint() -> sctp_ep_dump(). The issue is mitigated by a forma...

CVE-2023-53731 netlink: fix potential deadlock in netlink_set_err()

In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in netlinkseterr 1 A similar issue was fixed in commit 1d482e666b8e "netlink: disable IRQs for netlinklocktable" in netlinklocktable This patch...

EUVD-2025-27542

Malicious code in bioql PyPI...

CVE-2025-10222

Exposure of Sensitive Information to an Unauthorized Actor CWE-200 in the diagnostic dump component in AxxonSoft Axxon One VMS C-Werk 2.0.0 through 2.0.1 on Windows allows a local attacker to obtain licensing-related information such as timestamps, license states, and registry values via reading...

CVE-2025-10222

Exposure of Sensitive Information to an Unauthorized Actor CWE-200 in the diagnostic dump component in AxxonSoft Axxon One VMS C-Werk 2.0.0 through 2.0.1 on Windows allows a local attacker to obtain licensing-related information such as timestamps, license states, and registry values via reading...

PT-2025-37040

Name of the Vulnerable Software and Affected Versions: AxxonSoft Axxon One VMS versions 2.0.0 through 2.0.1 Description: The diagnostic dump component in AxxonSoft Axxon One VMS contains a flaw that allows a local attacker to obtain licensing-related information, such as timestamps, license state...

AxxonSoft AxxonOne 安全漏洞

AxxonSoft AxxonOne is a video surveillance and security management software from AxxonSoft Ireland. A security vulnerability exists in AxxonSoft AxxonOne version 2.0.1 and prior versions, which stems from the exposure of sensitive information by the Diagnostic Dump component, which could lead to...