Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000461)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000461 advisory. In the Linux kernel 4.4 through 5.7.6, usbtestdisconnect in drivers/usb/misc/usbtest.c has a memory leak, aka CID-28ebeb8db770. Tenable has extracted the preceding...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000427)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000427 advisory. Multiple memory leaks in the iwlpciectxtinfogen3init function in drivers/net/wireless/intel/iwlwifi/pcie/ctxt-info-gen3.c in the Linux kernel through 5.3.11 allow...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000240)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000240 advisory. An issue was discovered in the Linux kernel through 4.19. An information leak in cdromioctlselectdisc in drivers/cdrom/cdrom.c could be used by local attackers to re...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000266)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000266 advisory. An issue where a provided address with accessok is not checked was discovered in i915gemexecbuffer2ioctl in drivers/gpu/drm/i915/i915gemexecbuffer.c in the Linux...

UBUNTU-CVE-2025-68751

In the Linux kernel, the following vulnerability has been resolved: s390/fpu: Fix false-positive kmsan report in fpuvstl A false-positive kmsan report is detected when running ping command. An inline assembly instruction 'vstl' can write varied amount of bytes depending on value of 'index'...

CVE-2025-68751

CVE-2025-68751 concerns a false-positive KMSAN warning in the Linux kernel’s s390/fpu code (fpu_vstl). The inline assembly instruction vstl can write a variable number of bytes depending on runtime values; compile-time constraints cause the kmsan instrumentation to track only 1 byte, producing sp...

SUSE CVE-2022-50867

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix kvzalloc vs statekcalloc usage adrenoshowobject is a trap! It will re-allocate the pointer it is passed on first call, when the data is ascii85 encoded, using kvmalloc/ kvfree. Which means the data passed to it...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-992937)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992937 advisory. In the Linux kernel, the following vulnerability has been resolved: cassini: Fix a memory leak in the error handling path of casinitone cassaturnfirmwareinit allocat...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993037)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993037 advisory. In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak in testgensynthcmd and testemptysynthevent testgensynthcmd only free buf...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-993175)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993175 advisory. In the Linux kernel, the following vulnerability has been resolved: integrity: Fix memory leakage in keyring allocation error path Key restriction is allocated in...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992913)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992913 advisory. In the Linux kernel, the following vulnerability has been resolved: memory: of: Fix refcount leak bug in ofgetddrtimings We should add the ofnodeput when breaking ou...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993304)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993304 advisory. In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb-len Packet length retrieved from skb data may be...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-992983)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992983 advisory. In the Linux kernel, the following vulnerability has been resolved: objtool: Fix memory leak in createstaticcallsections strdup allocates memory for keyname. We need...

Exploit for CVE-2025-40019

CVE-2025-40019-Essiv A PoC for CVE-2025-40019 in ESSIV module...

EUVD-2023-60393

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add check for kmemdup Since the kmemdup may return NULL pointer, it should be better to add check for the return value in order to avoid NULL pointer dereference...

EUVD-2023-60447

In the Linux kernel, the following vulnerability has been resolved: exfat: use kvmallocarray/kvfree instead of kmallocarray/kfree The call stack shown below is a scenario in the Linux 4.19 kernel. Allocating memory failed where exfat fs use kmallocarray due to system memory fragmentation, while t...

CVE-2023-54210

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Avoid use-after-free in dbg for hciremoveadvmonitor KASAN reports that there's a use-after-free in hciremoveadvmonitor. Trawling through the disassembly, you can see that the complaint is from the access in...

CVE-2023-54201

In the Linux kernel, the following vulnerability has been resolved: RDMA/efa: Fix wrong resources deallocation order When trying to destroy QP or CQ, we first decrease the refcount and potentially free memory regions allocated for the object and then request the device to destroy the object. If t...

UBUNTU-CVE-2023-54194

In the Linux kernel, the following vulnerability has been resolved: exfat: use kvmallocarray/kvfree instead of kmallocarray/kfree The call stack shown below is a scenario in the Linux 4.19 kernel. Allocating memory failed where exfat fs use kmallocarray due to system memory fragmentation, while t...

CVE-2022-50821

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Don't leak netobj memory when gssreadproxyverf fails...