Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007413)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007413 advisory. In the Linux kernel, the following vulnerability has been resolved: xen: fix UAF in dmabufexpfrompages dmabuffd fixes; no preferences regarding the tree it goes...

EUVD-2025-27924

Malicious code in bioql PyPI...

CVE-2025-38722

In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix UAF in exportdmabuf As soon as we'd inserted a file reference into descriptor table, another thread could close it. That's fine for the case when all we are doing is returning that descriptor to userland it's a...

CVE-2025-38595

CVE-2025-38595 concerns a use-after-free in the Linux kernel’s Xen hypervisor path related to DMA buffer handling. The issue arises when a file descriptor for a dma_buf is inserted into a descriptor table and another thread closes it, with a race that can lead to dereferencing objects (e.g., the ...

DEBIAN-CVE-2024-40913

In the Linux kernel, the following vulnerability has been resolved: cachefiles: defer exposing anonfd until after copytouser succeeds After installing the anonymous fd, we can now see it in userland and close it. However, at this point we may not have gotten the reference count of the cache, but ...