Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013849)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013849 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/omap: dss: Fix refcount leak bugs In dssinitports and dssuninitports, we should call ofnodepu...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013648)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013648 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked ...

PT-2026-34397

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RDMA/irdma component where the free qp completion is not initialized before use. Specifically, in the irdma create qp function, if the ib copy to udata call fails,...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper handling of regmap initialization in the dmaengine xilinx xdma module. This issue may le...

PT-2026-34386

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw in the tracing component occurs when boot-time trigger registration fails before the trigger-data cleanup kthread is created. If kthread creation fails, the system fails to drain...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013473)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013473 advisory. In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash when devlink reload during pf initialization The devlink reload proce...

PT-2026-34259

Integer overflow in scratch buffer initialization size calculation in Samsung Open Source ONE cause incorrect memory initialization for large intermediate tensors. Affected version is prior to commit 1.30.0...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an improper initialization order of the freeqp object in the Irdma driver. This could lead to...

PT-2026-34391

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description Race conditions can occur in the hwmon pmbus/core component because the regulator operations pmbus regulator get voltage, pmbus regulator set voltage, and pmbus regulator list voltage...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013579)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013579 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: setup GPIO controller later in probe The GPIO controller component of the...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013730)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013730 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: hpsa: Fix possible memory leak in hpsainitone The hpdaallocctlrinfo allocates h and its fie...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013574)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013574 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: dio: fix possible memory leak in dioinit If deviceregister returns error, the 'dev' and...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013774)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013774 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix kernel NULL pointer dereference error When rxequeueinit in the function rxeqpinitre...

PT-2026-34355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ext4 file system where the ext4 inode attach jinode function publishes ei-jinode to concurrent users before jbd2 journal init jbd inode is completed. This allows a...

EUVD-2025-209539

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241

CVE-2025-1241 affects Fortra GoAnywhere MFT (prior to 7.10.0) and GoAnywhere Agents (prior to 2.2.0) where a static IV enables brute-force decryption of encrypted values. Impact is confidentiality (high), with network access required and admin privileges needed. Remediation: upgrade to GoAnywhere...

CVE-2025-1241 Encryption vulnerable to brute-force decryption in GoAnywhere MFT

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241 Encryption vulnerable to brute-force decryption in GoAnywhere MFT

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...

CVE-2025-1241

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data...