Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990515)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990515 advisory. In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows...

The vulnerability of the DumpScreen2RGB() function (gif2rgb.c) in the GIFLIB library allows a hacker to trigger a service denial.

The vulnerability of the DumpScreen2RGB function gif2rgb.c in the GIFLIB library is related to buffer overflow in the queue. Exploiting this vulnerability can allow an attacker to cause a service failure...

Insecure Defaults

Overview fprime-gds is a F Prime Flight Software Ground Data System layer Affected versions of this package are vulnerable to Insecure Defaults by repeated invocation of sendcommand, which can overflow the queue and consume excessive memory. Remediation There is no fixed version for fprime-gds...

Linux Distros Unpatched Vulnerability : CVE-2022-49592

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift...

SUSE CVE-2022-49592

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows due to 32 bits integer variable. Mask calculation is wrong for MTLRXQDMAMAP1. If CONFIGUBSAN is enabled, kernel dumps below warning...

CVE-2022-49592

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows due to 32 bits integer variable. Mask calculation is wrong for MTLRXQDMAMAP1. If CONFIGUBSAN is enabled, kernel dumps below warning...

CVE-2022-49592

CVE-2022-49592 affects the Linux kernel driver net/stmmac: a left-shift overflow in MTL_RXQ_DMA_MAP1 occurs when the number of TX/RX queues exceeds four, due to a 32‑bit mask calculation. UBSAN reports show a shift-out-of-bounds during UBSAN checks, leading to a potential warning path in dwmac4_c...

CVE-2022-49592 net: stmmac: fix dma queue left shift overflow issue

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows due to 32 bits integer variable. Mask calculation is wrong for MTLRXQDMAMAP1. If CONFIGUBSAN is enabled, kernel dumps below warning...

The vulnerability of the professional video editing software Adobe Premiere Pro, caused by buffer overflows in the queue, allows a hacker to execute arbitrary code.

The vulnerability of the professional video editing software Adobe Premiere Pro stems from buffer overflows in the queue. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models arises from buffer overflows in the queue, allowing an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Painter software for creating textures and materials for 3D models arises due to an overflow in the buffer area. Exploiting this vulnerability allows a hacker to execute arbitrary code using a specially created file...

Vulnerability of the functions EC_GROUP_new_curve_GF2m(), EC_GROUP_new_from_params(), and BN_GF2m_*() in the Elliptic Curve API of the OpenSSL cryptographic library, which allows a hacker to execute arbitrary code.

The vulnerabilities of the functions ECGROUPnewcurveGF2m, ECGROUPnewfromparams, and BNGF2m in the Elliptic Curve API of the OpenSSL cryptographic library are exploited due to a buffer overflow in the queue. Exploiting these vulnerabilities could allow a remote attacker to execute arbitrary code...

The vulnerability of the H5VM_array_fill() function in the H5VM.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5VMarrayfill function in the H5VM.c file of the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the H5A__close() function in the HDF5 library allows a hacker to trigger a service failure.

The vulnerability of the H5Aclose function in the HDF5 library is related to buffer overflows in the queue, which can lead to corruption of instruction pointers. Exploiting this vulnerability may allow an attacker to cause a service failure from a remote location...

The vulnerability of the H5O__dtype_encode_helper() function in the H5Odtype.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Odtypeencodehelper function in the H5Odtype.c file of the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the H5O__layout_encode() function in the H5Olayout.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Olayoutencode function in the H5Olayout.c file of the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the H5HG_read() function in the H5HG.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5HGread function in the H5HG.c file of the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the H5HG_read() function in the HDF5 library allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5HGread function in the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the H5A__close() function in the H5Aint.c file of the HDF5 library allows a hacker to trigger a service failure.

The vulnerability of the H5Aclose function in the H5Aint.c file of the HDF5 library is related to buffer overflows in the queue, which can lead to corruption of instruction pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the H5T__conv_struct_opt() function in the H5Tconv.c file of the HDF5 library allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Tconvstructopt function in the H5Tconv.c file of the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the H5A__attr_release_table() function in the HDF5 library allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Aattrreleasetable function in the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...