UBUNTU-CVE-2022-50523

In the Linux kernel, the following vulnerability has been resolved: clk: rockchip: Fix memory leak in rockchipclkregisterpll If clkregister fails, @pll-ratetable may have allocated memory by kmemdup, so it needs to be freed, otherwise will cause memory leak issue, this patch fixes it...

UBUNTU-CVE-2023-53686

In the Linux kernel, the following vulnerability has been resolved: net/handshake: fix null-ptr-deref in handshakenldonedoit We should not call tracehandshakecmddoneerr if socket lookup has failed. Also we should call tracehandshakecmddoneerr before releasing the file, otherwise dereferencing...

UBUNTU-CVE-2023-53676

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...

Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: CVE-2024-50154: tcp/dccp: Don't use timerpending in reqskqueueunlink bsc1233072 CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing bsc1237048 CVE-2025-21791: vrf: use RCU protection in l3mdevl3out bsc1240744...

CVE-2023-53676 scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...

CVE-2023-53655

CVE-2023-53655 (Linux kernel) is a stack overflow vulnerability caused by registering a kprobe on __rcu_irq_enter_check_tick(). The issue can trigger kernel panics/stack overflow when NO_HZ_FULL is enabled and the system boots with nohz_full=, leading to a tree of stack traces and a kernel panic,...

CVE-2022-50537

CVE-2022-50537 affects the Linux kernel through a memory-leak in the Raspberry Pi firmware path. The flaw occurs in rpi_firmware_probe(): when mbox_request_channel() fails, the allocated fw was not freed, leading to a leak. The fix, as described in the vulnerability notes, frees the fw via kfree(...

CVE-2023-53652 vdpa: Add features attr to vdpa_nl_policy for nlattr length check

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add features attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr point...

CVE-2023-53645 bpf: Make bpf_refcount_acquire fallible for non-owning refs

In the Linux kernel, the following vulnerability has been resolved: bpf: Make bpfrefcountacquire fallible for non-owning refs This patch fixes an incorrect assumption made in the original bpfrefcount series 0, specifically that the BPF program calling bpfrefcountacquire on some node can always...

EUVD-2025-32788

In the Linux kernel, the following vulnerability has been resolved: bpf: Make bpfrefcountacquire fallible for non-owning refs This patch fixes an incorrect assumption made in the original bpfrefcount series 0, specifically that the BPF program calling bpfrefcountacquire on some node can always...

EUVD-2000-0273

Malware in sbrugna...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-430123)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-430123 advisory. In the Linux kernel, the following vulnerability has been resolved: Input: synaptics-rmi4 - fix use after free in rmiunregisterfunction The putdevice calls...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987084)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987084 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: re-fetch skb cb after tipcmsgvalidate As the call trace shows, the original skb was freed i...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987147)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987147 advisory. In the Linux kernel, the following vulnerability has been resolved: iavf: Fix handling of dummy receive descriptors Fix memory leak caused by not handling dummy...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986936)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986936 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory ordering between normal and ordered work functions Ordered work functions aren'...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986795)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986795 advisory. In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum: Protect driver from buggy firmware When processing port up/down events generated...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-386953)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-386953 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free of timer for log writer thread Patch series nilfs2: fix log writer...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987304)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987304 advisory. In the Linux kernel, the following vulnerability has been resolved: staging: vchiqcore: handle NULL result of findservicebyhandle In case of an invalid handle the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987291)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987291 advisory. In the Linux kernel, the following vulnerability has been resolved: audit: improve robustness of the audit queue handling If the audit daemon were ever to get stuck ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986860)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986860 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix refcount leak in a6xxgpuinit ofparsephandle returns a node pointer with refcoun...