Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003892)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003892 advisory. In the seccomp implementation prior to kernel version 4.8, there is a possible seccomp bypass due to seccomp policies that allow the use of ptrace. This could lead t...

CVE-2025-5808 Authentication Bypass vulnerability discovered in the OpenText™ Self-Service Password Reset

Improper Input Validation vulnerability in OpenText Self Service Password Reset allows Authentication Bypass.This issue affects Self Service Password Reset from before 4.8 patch 3...

It was found in OpenShift before version 4.8 that the generated certificate for the in-cluster Service CA incorrectly included additional certificates. The Service CA is automatically mounted into all pods allowing them to safely connect to trusted in-cluster services that present certificates signed by the trusted Service CA. The incorrect inclusion of additional CAs in this certificate would allow an attacker that compromises any of the additional CAs to masquerade as a trusted in-cluster service.

...

CVE-2022-36052 Out-of-bounds read when decompressing UDP header

Contiki-NG is an open-source, cross-platform operating system for Next-Generation IoT devices. The 6LoWPAN implementation in Contiki-NG may cast a UDP header structure at a certain offset in a packet buffer. The code does not check whether the packet buffer is large enough to fit a full UDP heade...