Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001999)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001999 advisory. The netlinksendmsg function in net/netlink/afnetlink.c in the Linux kernel before 3.5.5 does not validate the dstpid field, which allows local users to have an...

SUSE CVE-2010-2522

The mipv6 daemon in UMIP 0.4 does not verify that netlink messages originated in the kernel, which allows local users to spoof netlink socket communication via a crafted unicast message...

DEBIAN-CVE-2012-6689

The netlinksendmsg function in net/netlink/afnetlink.c in the Linux kernel before 3.5.5 does not validate the dstpid field, which allows local users to have an unspecified impact by spoofing Netlink messages...

libmnl: incorrect validation of netlink message origin allows attackers to spoof netlink messages

The netlinksendmsg function in net/netlink/afnetlink.c in the Linux kernel before 3.5.5 does not validate the dstpid field, which allows local users to have an unspecified impact by spoofing Netlink messages...

UBUNTU-CVE-2012-2669

The main function in tools/hv/hvkvpdaemon.c in hypervkvpd, as distributed in the Linux kernel before 3.4.5, does not validate the origin of Netlink messages, which allows local users to spoof Netlink communication via a crafted connector message...

kernel: af_netlink: invalid handling of SCM_CREDENTIALS passing

The Netlink implementation in the Linux kernel before 3.2.30 does not properly handle messages that lack SCMCREDENTIALS data, which might allow local users to spoof Netlink communication via a crafted message, as demonstrated by a message to 1 Avahi or 2 NetworkManager...