Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bpf: Reject narrower access to pointer ctx fields CVE-2025-38591 In the Linux kernel, the following vulnerability has been resolved: schedext: Fix possible deadlock in the deferredirqworkfn CVE-2025-68333 In the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005660)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005660 advisory. In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Fix a refcount bug in qrtrrecvmsg Syzbot reported a bug as following: refcountt:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005760)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005760 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: tegra20: Fix refcount leak in tegra20clockinit offindmatchingnode returns a node pointer wit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005674)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005674 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra210clockinit offindmatchingnode returns a node pointer with...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005609)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005609 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra210clockinit offindmatchingnode returns a node pointer with...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005621)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005621 advisory. In the Linux kernel, the following vulnerability has been resolved: memory: of: Fix refcount leak bug in oflpddr3getddrtimings We should add the ofnodeput when...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005768)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005768 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6/addrconf: fix a potential refcount underflow for idev Now in addrconfmodrstimer, reference...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005426)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005426 advisory. In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix refcount warning in tipcaeadencrypt syzbot reported a refcount warning 1 caused by...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2026-50134)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50134 advisory. - xfrm: delete x-tunnel as we delete x Sabrina Dubroca Orabug: 39016501 CVE-2025-40215 - crypto: afalg - Fix incorrect boolean values in afalgctx...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005608)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005608 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: tegra20: Fix refcount leak in tegra20clockinit offindmatchingnode returns a node pointer wit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005756)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005756 advisory. In the Linux kernel, the following vulnerability has been resolved: net: tipc: fix refcount warning in tipcaeadencrypt syzbot reported a refcount warning 1 caused by...

SUSE-SU-2026:20555-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-40147: blk-throttle: fix access race during throttle policy activation bsc1253344. - CVE-2025-40257: mptcp: fix a race in mptcppmdeladdtimer...

SUSE-SU-2026:20615-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 and SL MIxro 6.2 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-40147: blk-throttle: fix access race during throttle policy activation bsc1253344. - CVE-2025-40257: mptcp: fix a race in mptcppmdeladdtimer...

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1430)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1430 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates CVE-2025-38678 In the Linux kernel, the following vulnerability has...

SUSE CVE-2026-23127

In the Linux kernel, the following vulnerability has been resolved: perf: Fix refcount warning on event-mmapcount increment When calling refcountinc&event-mmapcount inside perfmmaprb, the following warning is triggered: refcountt: addition on 0; use-after-free. WARNING: lib/refcount.c:25 PoC:...

kernel: Linux kernel use-after-free in eventpoll

A flaw was found in the Linux kernel's eventpoll epoll mechanism. A local attacker could exploit a use-after-free vulnerability due to incorrect handling of the 'ep' refcount while the 'ep' mutex is still held. This can lead to memory corruption, potentially allowing the attacker to achieve...

CVE-2025-71204

A reference count leak flaw was found in the Linux kernel's ksmbd in-kernel SMB server. In the parsedurablehandlecontext function, when a command is detected as a replay operation and returns -ENOEXEC, the reference count of the ksmbdfile structure is not properly released. This leads to a resour...

SUSE CVE-2025-71204

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix refcount leak in parsedurablehandlecontext When the command is a replay operation and -ENOEXEC is returned, the refcount of ksmbdfile must be released...

SUSE CVE-2025-71223

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix refcount leak in smb2open When ksmbdvfsgetattr fails, the reference count of ksmbdfile must be released...

CVE-2025-71204

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix refcount leak in parsedurablehandlecontext When the command is a replay operation and -ENOEXEC is returned, the refcount of ksmbdfile must be released...