Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000686)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000686 advisory. The dgramrecvmsg function in net/ieee802154/dgram.c in the Linux kernel before 3.12.4 updates a certain length value without ensuring that an associated data structu...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003445)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003445 advisory. The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003252)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003252 advisory. The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003003)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003003 advisory. The getuserasmex macro in arch/x86/include/asm/uaccess.h in the Linux kernel before 4.7.5 does not initialize a certain integer variable, which allows local users to...

EUVD-2021-22902

Malware in sbrugna...

CVE-2021-47339 media: v4l2-core: explicitly clear ioctl input data

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: explicitly clear ioctl input data As seen from a recent syzbot bug report, mistakes in the compat ioctl implementation can lead to uninitialized kernel stack data getting used as input for driver ioctl handlers...

CVE-2022-48654

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

CVE-2022-48654

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

CVE-2022-48654 netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fix possible bogus match in nfosffind nfosffind incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nftosf which can be used to leak stale kernel stack data to userspa...

SUSE CVE-2010-4081

The sndhdspmhwdepioctl function in sound/pci/rme9652/hdspm.c in the Linux kernel before 2.6.36-rc6 does not initialize a certain structure, which allows local users to obtain potentially sensitive information from kernel stack memory via an SNDRVHDSPMIOCTLGETCONFIGINFO ioctl call...

SUSE CVE-2012-6543

The l2tpip6getname function in net/l2tp/l2tpip6.c in the Linux kernel before 3.6 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel stack memory via a crafted application...

SUSE CVE-2016-4580

The x25negotiatefacilities function in net/x25/x25facilities.c in the Linux kernel before 4.5.5 does not properly initialize a certain data structure, which allows attackers to obtain sensitive information from kernel stack memory via an X.25 Call Request...

PT-2022-7439 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the nf osf find function in the netfilter component of the Linux kernel, which incorrectly returns true on mismatch. This leads to copying an uninitialized memo...

kernel: Heap address information leak while using L2CAP_GET_CONF_OPT

A flaw was found in the Linux kernel's implementation of Logical Link Control and Adaptation Protocol L2CAP, part of the Bluetooth stack. An attacker, within the range of standard Bluetooth transmissions, can create and send a specially crafted packet. The response to this specially crafted packe...

Linux kernel information disclosure vulnerability (CNVD-2016-03868)

The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. An information disclosure vulnerability exists in the 'rdsincinfocopy' function in the net/rds/recv.c file of the Linux kernel, which stems from the program's failure to...

DEBIAN-CVE-2013-3231

The llcuirecvmsg function in net/llc/afllc.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtain sensitive information from kernel stack memory via a crafted recvmsg or recvfrom system call...

SuSE-SA:2003:049: Linux Kernel

The remote host is missing the patch for the advisory SuSE-SA:2003:049 Linux Kernel. This security update fixes a serious vulnerability in the Linux kernel. A missing bounds check in the brk system call allowed processes to request memory beyond the maximum size allowed for tasks, causing kernel...