Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52866)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003965)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003965 advisory. An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001569)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001569 advisory. A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udffilewriteiter function for the malicious UDF...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004085)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004085 advisory. In the Linux kernel before 4.20.14, expanddownwards in mm/mmap.c lacks a check for the mmap minimum address, which makes it easier for attackers to exploit kernel NU...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004053)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004053 advisory. In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sasdiscover.c because of mishandling of port disconnection during...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52433)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001485)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001485 advisory. A vulnerability was found in Linux Kernel where in the spkttyioreceivebuf2 function, it would dereference spkttyiosynth without checking whether it is NULL or not, a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003891)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003891 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004756)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004756 advisory. A NULL pointer dereference flaw was found in the Linux kernels KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. Thi...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000724)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000724 advisory. The sctpassocupdate function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a deni...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004226)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004226 advisory. A vulnerability was found in Linux Kernel where in the spkttyioreceivebuf2 function, it would dereference spkttyiosynth without checking whether it is NULL or not, a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004785)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004785 advisory. A null pointer dereference issue was found in can protocol in net/can/afcan.c in the Linux before Linux. mlpriv may not be initialized in the receive path of CAN...

MiracleLinux 7 : sox-14.4.1-7.el7 (AXSA:2019-4121:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-4121:01 advisory. sox: NULL pointer dereference in startread function in xa.c CVE-2017-18189 Tenable has extracted the preceding description block directly from the MiracleLin...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003719)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003719 advisory. An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003633)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003633 advisory. An issue was discovered in dlparparseccproperty in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52862)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004757)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004757 advisory. A NULL pointer dereference flaw was found in the Linux kernels Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001140)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001140 advisory. The unimacmdioprobe function in drivers/net/phy/mdio-bcm-unimac.c in the Linux kernel through 4.15.8 does not validate certain resource availability, which allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003975)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003975 advisory. A NULL pointer dereference flaw was found in the Linux kernels KVM module, which can lead to a denial of service in the x86emulateinsn in arch/x86/kvm/emulate.c. Thi...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52857)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...