Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001072)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001072 advisory. sound/core/timer.c in the Linux kernel before 4.11.5 is vulnerable to a data race in the ALSA /dev/snd/timer driver resulting in local users being able to read...

CVE-2022-49149 rxrpc: Fix call timer start racing with call destruction

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call timer start racing with call destruction The rxrpccall struct has a timer used to handle various timed events relating to a call. This timer can get started from the packet input routines that are run in softirq...

UBUNTU-CVE-2024-26737

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix racing between bpftimercancelandfree and bpftimercancel The following race is possible between bpftimercancelandfree and bpftimercancel. It will lead a UAF on the timer-timer. bpftimercancel; spinlock; t = timer-time;...

SUSE CVE-2017-5967

The time subsystem in the Linux kernel through 4.9.9, when CONFIGTIMERSTATS is enabled, allows local users to discover real PID values as distinguished from PID values inside a PID namespace by reading the /proc/timerlist file, related to the printtimer function in kernel/time/timerlist.c and the...

DEBIAN-CVE-2017-18344

The timercreate syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate the sigevent-sigevnotify field, which leads to out-of-bounds access in the showtimer function called when /proc/$PID/timers is read. This allows userspace applications ...