Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003940)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003940 advisory. An issue was discovered in the Linux kernel before 5.0.6. In rxqueueaddkobject and netdevqueueaddkobject in net/core/net-sysfs.c, a reference count is mishandled, ak...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001359)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001359 advisory. hsofreenetdevice in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregisternetdev without checking for the NETREGREGISTERED state, leading to a...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001725)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001725 advisory. A double-free flaw was found in the Linux kernels TUN/TAP device driver functionality in how a user registers the device when the registernetdevice function fails...

MiracleLinux 9 : kernel-5.14.0-611.13.1.el9_7 (AXSA:2025-11544:99)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11544:99 advisory. kernel: can: j1939: implement NETDEVUNREGISTER notification handler CVE-2025-39925 kernel: net/mlx5: fs, fix UAF in flow counter release...

kernel: can: j1939: implement NETDEV_UNREGISTER notification handler

A flaw was discovered in the J1939 protocol implementation in the Linux kernel. The NETDEVUNREGISTER notification handler was missing for undoing changes performed by j1939skbind. As a result, an extra reference remains on the j1939priv structure when unregistering a network device, preventing it...

RHEL 10 : kernel (RHSA-2026:0271)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:0271 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: x86/vmscape: Add conditional...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000480)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000480 advisory. An issue was discovered in the Linux kernel before 5.0.6. In rxqueueaddkobject and netdevqueueaddkobject in net/core/net-sysfs.c, a reference count is mishandled, ak...

PT-2026-4658

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.18.0-rc5+ 117 Description The Linux kernel contained a flaw in the net/mlx5e component where the mlx5e priv structure was incorrectly stored in the mlx5e dev devlink private area. This structure is unstable and...

PT-2026-4481

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the idpf Intel Data Plane Framework driver related to handling resets. Specifically, the issue arises from insufficient protection of the reset pa...

SUSE CVE-2023-54273

In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix leak of dev tracker At the stage of direction checks, the netdev reference tracker is already initialized, but released with wrong put call...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993061)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993061 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix potential memory leak in brcmfnetdevstartxmit The brcmfnetdevstartxmit return...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-993147)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993147 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free bug in brcmfnetdevstartxmit ret = brcmfprototxqueuedatadrvr,...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992711)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992711 advisory. In the Linux kernel, the following vulnerability has been resolved: ath11k: fix netdev open race Make sure to allocate resources needed before registering the device...

EUVD-2023-60441

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: always release netdev hooks from notifier This reverts "netfilter: nftables: skip netdev events generated on netns removal". The problem is that when a veth device is released, the veth release callback will...

CVE-2023-54273

In the Linux kernel, the following vulnerability has been resolved: xfrm: Fix leak of dev tracker At the stage of direction checks, the netdev reference tracker is already initialized, but released with wrong put call...

CVE-2023-54200

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: always release netdev hooks from notifier This reverts "netfilter: nftables: skip netdev events generated on netns removal". The problem is that when a veth device is released, the veth release callback will...

CVE-2022-50817

In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid possible NULL deref in skbclone syzbot got a crash 1 in skbclone, caused by a bug in hsrgetuntaggedframe. When/if createstrippedskbhsr returns NULL, we must not attempt to call skbclone. While we are at it, replac...

UBUNTU-CVE-2022-50817

In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid possible NULL deref in skbclone syzbot got a crash 1 in skbclone, caused by a bug in hsrgetuntaggedframe. When/if createstrippedskbhsr returns NULL, we must not attempt to call skbclone. While we are at it, replac...

CVE-2023-54273

The CVE-2023-54273 entry describes a Linux kernel vulnerability in the xfrm subsystem where the netdev reference tracker is released with the wrong _put() call during direction checks, causing a resource leak. This can exhaust system resources and lead to a Denial of Service. Documents confirm th...