CVE-2026-0106

In vpummap of vpuioctl, there is a possible arbitrary address mmap due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2026-0106

The CVE-2026-0106 issue affects the VPU driver, specifically the vpu_mmap function in vpu_ioctl, where a missing bounds check can allow arbitrary address mappings. This enables local privilege escalation with no extra execution privileges and does not require user interaction. Multiple sources (N...

SUSE CVE-2026-23097

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

Google Android 安全漏洞

Google Android is an open-source operating system based on Linux, developed by Google Inc. There are security vulnerabilities in Google Android, which stem from a lack of boundary checks in the vpummap function of vpuioctl. This vulnerability may lead to arbitrary memory mapping, potentially...

CVE-2026-23097 migrate: correct lock ordering for hugetlb file folios

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

EUVD-2026-5445

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

CVE-2026-23097 migrate: correct lock ordering for hugetlb file folios

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

CVE-2026-23097

In the Linux kernel, the following vulnerability has been resolved: migrate: correct lock ordering for hugetlb file folios Syzbot has found a deadlock analyzed by Lance Yang: 1 Task 5749: Holds foliolock, then tries to acquire immaprwsemread lock. 2 Task 5754: Holds immaprwsemwrite lock, then tri...

PUB-A-463674877

In vpummap of vpuioctl, there is a possible arbitrary address mmap due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005017)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005017 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential AB/BA lock with buffermutex and mmaplock syzbot caught a potential...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005142)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005142 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: call the securitymmapfile LSM hook in remapfilepages The remapfilepages syscall handler call...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38088)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38088 advisory. - In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/memtrace: Fix out of...

Azure Linux 3.0 Security Update: kernel (CVE-2025-21853)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21853 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freezemutex during mm...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003692)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003692 advisory. arch/powerpc/mm/mmucontextbook3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000652)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000652 advisory. Memory leak in mm/hugetlb.c in the Linux kernel before 3.4.2 allows local users to cause a denial of service memory consumption or system crash via invalid MAPHUGETL...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000942)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000942 advisory. Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6 allows local users to cause a denial of service BUG or possibly have unspecified other...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001221)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001221 advisory. The resvmaprelease function in mm/hugetlb.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service BUG via a crafted application that mak...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004650)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004650 advisory. An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions expanddownwards and expandupwards...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000729)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000729 advisory. Multiple integer overflows in Alchemy LCD frame-buffer drivers in the Linux kernel before 3.12 allow local users to create a read-write memory mapping for the entire...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001532)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001532 advisory. An issue was discovered in the Linux kernel through 4.17.3. An Integer Overflow in kernel/time/posix- timers.c in the POSIX timer code is caused by the way the overr...