Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989203)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989203 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix shrinker list corruption by madvise IOCTL Calling madvise IOCTL twice on BO...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989169)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989169 advisory. In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput on failed usercopy If the copy back to userland fails for the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990042)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990042 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: fix information leak in btrfsioctllogicaltoino Syzbot reported the following information...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988723)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988723 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour. Submitting a cs with 0 chunks, caus...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990020)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990020 advisory. In the Linux kernel, the following vulnerability has been resolved: dm ioctl: prevent potential spectre v1 gadget It appears like cmd could be a Spectre v1 gadget as...

CVE-2025-47368

Memory corruption when dereferencing an invalid userspace address in a user buffer during MCDM IOCTL processing...

CVE-2025-47367 Out-of-bounds Write in WinBlast Driver

Memory corruption while accessing a buffer during IOCTL processing...

CVE-2025-61156

Incorrect access control in the kernel driver of ThreatFire System Monitor v4.7.0.53 allows attackers to escalate privileges and execute arbitrary commands via an insecure IOCTL...

UBUNTU-CVE-2025-40031

In the Linux kernel, the following vulnerability has been resolved: tee: fix registershmhelper In registershmhelper, fix incorrect error handling for a call to ioviterextractpages. A case is missing for when ioviterextractpages only got some pages and return a number larger than 0, but not the...

CVE-2025-61155

CVE-2025-61155 affects Hotta Studio’s GameDriverX64.sys kernel-mode anti-cheat driver (versions 7.23.4.7 and earlier). The vulnerability is in an IOCTL handler: an untrusted user-mode process can open the driver and send crafted IOCTLs, which execute in kernel mode with insufficient authenticatio...

CVE-2025-60349

CVE-2025-60349 affects Prevx v3.0.5.220. The issue is a denial-of-service vulnerability caused by the pxscan.sys driver not handling IOCTL code 0x22E044, which can terminate any processes listed under the registry path HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\pxscan\Files. Multiple so...

Hotta Studio GameDriverX64.sys 安全漏洞

Hotta Studio GameDriverX64.sys is the underlying driver file for a game from Hotta Studio China. A security vulnerability exists in Hotta Studio GameDriverX64.sys version 7.23.4.7, which stems from improper handling of specially crafted IOCTL requests and could lead to a denial of service attack...

CVE-2025-61155

The GameDriverX64.sys kernel-mode anti-cheat driver v7.23.4.7 and earlier contains an access control vulnerability in one of its IOCTL handlers. A user-mode process can open a handle to the driver device and send specially crafted IOCTL requests. These requests are executed in kernel-mode context...

Siemens SIMATIC Devices Out-of-bounds Write (CVE-2024-50151)

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound request buffers down for encryption into a single i...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38589)

netrom: fix possible dead-lock in nrrtioctl syzbot loves netrom, and found a possible deadlock in nrrtioctl 1 Make sure we always acquire nrnodelistlock before nrnodelocknrnode. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

CVE-2025-60419

An issue was discovered in the NDIS Usermode IO driver RtkIOAC60.sys, version 6.0.5600.16348 allowing local authenticated attackers to send a crafted IOCTL request to the driver to cause a denial of service...

EUVD-2022-54587

In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix shrinker list corruption by madvise IOCTL Calling madvise IOCTL twice on BO causes memory shrinker list corruption and crashes kernel because BO is already on the list and it's added to the list again, while BO...

SUSE CVE-2022-50570

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: fix memory corruption in ioctl If "smem.bytes" is larger than the buffer size it leads to memory corruption...

CVE-2025-62525

CVE-2025-62525 affects OpenWrt pre-24.10.4. The vulnerability is in the ltq-ptm driver (DSL datapath) on lantiq targets (xrx200, danube, amazon SoCs) when DSL runs in PTM mode. Local users could read/write arbitrary kernel memory, potentially escaping containers/sandboxes. VRX518 DSL driver not a...

DEBIAN-CVE-2022-50570

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: fix memory corruption in ioctl If "smem.bytes" is larger than the buffer size it leads to memory corruption...