PT-2026-43900

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the authencesn component of the crypto subsystem where the crypto authenc esn create function fails to validate the auth-digestsize before copying it into...

Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014350)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014350 advisory. In the Linux kernel, the following vulnerability has been resolved: fpga: manager: add owner module and take its refcount The current implementation of the fpga...

CVE-2026-23417 bpf: Fix constant blinding for PROBE_MEM32 stores

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix constant blinding for PROBEMEM32 stores BPFST | BPFPROBEMEM32 immediate stores are not handled by bpfjitblindinsn, allowing user-controlled 32-bit immediates to survive unblinded into JIT-compiled native code when...

PT-2026-27711

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ioremap prot function related to memory access permissions on the arm64 architecture. Specifically, the function incorrectly handles permission...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993086)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993086 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix error unwind in rxecreateqp In the function rxecreateqp, rxeqpfrominit is called to...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992578)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992578 advisory. In the Linux kernel, the following vulnerability has been resolved: igb: Fix igbdown hung on surprise removal In a setup where a Thunderbolt hub connects to Ethernet...

OESA-2025-2660 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: Squashfs: check return result of sbminblocksize Syzkaller reports an "UBSAN: shift-out-of-bounds in squashfsbioread" bug. Syzkaller forks multiple processes whic...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987344)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987344 advisory. In the Linux kernel, the following vulnerability has been resolved: can: dev: cangetechoskb: prevent call to kfreeskb in hard IRQ context If a driver calls...

SUSE CVE-2025-38132

In the Linux kernel, the following vulnerability has been resolved: coresight: holding cscfgcsdevlock while removing cscfg from csdev There'll be possible race scenario for coresight config: CPU0 CPU1 perf enable load module cscfgloadconfigsets activate config. // sysfs sysactivecnt == 1...

The vulnerability of the amdkfd_free_gtt_mem() function in the driver /drivers/gpu/drm/amd/amdgpu/amdgpu_amdkfd.c of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the amdkfdfreegttmem function in the driver /drivers/gpu/drm/amd/amdgpu/amdgpuamdkfd.c of the Linux kernel lies in the reuse of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

CVE-2025-21996 drm/radeon: fix uninitialized size issue in radeon_vce_cs_parse()

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix uninitialized size issue in radeonvcecsparse On the off chance that command stream passed from userspace via ioctl call to radeonvcecsparse is weirdly crafted and first command to execute is to encode case...