Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013388)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013388 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id before destroy qp to avoid use after free We should always destroy cmid...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007590)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007590 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id before destroy qp to avoid use after free We should always destroy cmid...

CVE-2023-54015

CVE-2023-54015: In the Linux kernel, the mlx5_devcom_register_device allocation flow could cause a use-after-free. If devcom allocation fails, the code frees priv, but priv might belong to another thread, risking use-after-free. The fix frees priv only when it was allocated by the running thread,...

CVE-2023-54015 net/mlx5: Devcom, fix error flow in mlx5_devcom_register_device

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5devcomregisterdevice In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and freeing it might lead to...

EUVD-2025-19783

Malicious code in bioql PyPI...

EUVD-2024-51792

Malicious code in bioql PyPI...

EUVD-2025-28944

Malicious code in bioql PyPI...

EUVD-2022-55020

Malicious code in bioql PyPI...

UBUNTU-CVE-2025-39834

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, Fix memory leak in hwsactiongetsharedstcnic error flow When an invalid stctype is provided, the function allocates memory for sharedstc but jumps to unlockandout without freeing it, causing a memory leak. Fix by...

CVE-2025-39834 net/mlx5: HWS, Fix memory leak in hws_action_get_shared_stc_nic error flow

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, Fix memory leak in hwsactiongetsharedstcnic error flow When an invalid stctype is provided, the function allocates memory for sharedstc but jumps to unlockandout without freeing it, causing a memory leak. Fix by...

Linux Distros Unpatched Vulnerability : CVE-2025-39768

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, fix complex rules rehash error flow Moving rules from matcher to matcher shou...

DEBIAN-CVE-2025-39768

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, fix complex rules rehash error flow Moving rules from matcher to matcher should not fail. However, if it does fail due to various reasons, the error flow should allow the kernel to continue functioning albeit with...

CVE-2025-39768 net/mlx5: HWS, fix complex rules rehash error flow

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, fix complex rules rehash error flow Moving rules from matcher to matcher should not fail. However, if it does fail due to various reasons, the error flow should allow the kernel to continue functioning albeit with...

CVE-2025-38161 RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction Upon RQ destruction if the firmware command fails which is the last resource to be destroyed some SW resources were already cleaned regardless of the failure. Now...

CVE-2025-38161 RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction Upon RQ destruction if the firmware command fails which is the last resource to be destroyed some SW resources were already cleaned regardless of the failure. Now...

RHEL 9 : kernel (RHSA-2025:4342)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4342 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: usb: smsc75xx: Fix...

CVE-2025-21751 net/mlx5: HWS, change error flow on matcher disconnect

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: HWS, change error flow on matcher disconnect Currently, when firmware failure occurs during matcher disconnect flow, the error flow of the function reconnects the matcher back and returns an error, which continues runni...

CVE-2022-49206 RDMA/mlx5: Fix memory leak in error flow for subscribe event routine

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in error flow for subscribe event routine In case the second xainsert fails, the objevent is not released. Fix the error unwind flow to free that memory to avoid a memory leak...

CVE-2022-49206 RDMA/mlx5: Fix memory leak in error flow for subscribe event routine

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in error flow for subscribe event routine In case the second xainsert fails, the objevent is not released. Fix the error unwind flow to free that memory to avoid a memory leak...

CVE-2022-49206 RDMA/mlx5: Fix memory leak in error flow for subscribe event routine

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix memory leak in error flow for subscribe event routine In case the second xainsert fails, the objevent is not released. Fix the error unwind flow to free that memory to avoid a memory leak...