Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010877)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010877 advisory. In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a KMSAN: uninit-value in...

AZL-68915 CVE-2025-40049 affecting package kernel for versions less than 6.6.112.1-2

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

CVE-2025-40049

CVE-2025-40049 is a Linux kernel vulnerability in the Squashfs filesystem. The issue arises when squashfs_get_parent() is called with a non-directory inode (e.g., a symbolic link) and the parent field is uninitialized, leading to an uninitialized-value access. The fixed patch initializes parent t...

Linux Distros Unpatched Vulnerability : CVE-2025-40049

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a KMSAN: uninit-value in squashfsgetparent bug. This is caused by openbyhandleat being called...

UBUNTU-CVE-2022-50017

In the Linux kernel, the following vulnerability has been resolved: mips: cavium-octeon: Fix missing ofnodeput in octeon2usbclocksstart We should call ofnodeput for the reference 'uctlnode' returned by ofgetparent which will increase the refcount. Otherwise, there will be a refcount leak bug...