Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001455)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001455 advisory. An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003052)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003052 advisory. The sctpdopeeloff function in net/sctp/socket.c in the Linux kernel before 4.14 does not check whether the intended netns is used in a peel-off action, which allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003539)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003539 advisory. An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001860)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001860 advisory. Race condition in net/sctp/socket.c in the Linux kernel before 4.1.2 allows local users to cause a denial of service list corruption and panic via a rapid series of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002422)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002422 advisory. Race condition in net/sctp/socket.c in the Linux kernel before 4.1.2 allows local users to cause a denial of service list corruption and panic via a rapid series of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003087)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003087 advisory. An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

EUVD-2019-13487

Malware in sbrugna...

EUVD-2018-13796

Malware in sbrugna...

EUVD-2006-4523

Malware in sbrugna...

CVE-2020-7463

In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3, and 11.3-RELEASE before p13, improper handling in the kernel causes a use-after-free bug by sending large user messages from multiple threads on the same SCTP socket. The...

CVE-2021-46929

In the Linux kernel, the following vulnerability has been resolved: sctp: use callrcu to free endpoint This patch is to delay the endpoint free by calling callrcu to fix another use-after-free issue in sctpsockdump: BUG: KASAN: use-after-free in lockacquire+0x36d9/0x4c20 Call Trace:...

SUSE CVE-2006-4535

The Linux kernel 2.6.17.10 and 2.6.17.11 and 2.6.18-rc5 allows local users to cause a denial of service crash via an SCTP socket with a certain SOLINGER value, possibly related to the patch for CVE-2006-3745. NOTE: older kernel versions for specific Linux distributions are also affected, due to...

SUSE CVE-2018-25015

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

Important: kernel

Issue Overview: A use-after-free flaw was found in the Linux kernel's NFC LLCP protocol implementation in the way the user performs manipulation with an unknown input for the llcpsockbind function. This flaw allows a local user to crash or escalate their privileges on the system. CVE-2020-25670 A...

SUSE SLES15 Security Update : kernel (SUSE-SU-2021:3969-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3969-1 advisory. - Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of al...

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:3217-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3217-1 advisory. - In pppol2tpconnect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System...

DEBIAN-CVE-2018-25015

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

Linux kernel 资源管理错误漏洞

The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A post-release reuse vulnerability exists in net/sctp/socket.c in versions of Linux kernel prior to 4.14.16. An...

Medium: kernel

Issue Overview: An issue was discovered in the Linux kernel related to mm/gup.c and mm/hugememory.c. The getuserpages aka gup implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended read access...

Apple iTunes < 12.11.3 Multiple Vulnerabilities (credentialed check)

The version of Apple iTunes installed on the remote Windows host is prior to 12.11.3. It is, therefore, affected by multiple vulnerabilities as referenced in the HT212319 advisory. - In FreeBSD 12.1-STABLE before r364644, 11.4-STABLE before r364651, 12.1-RELEASE before p9, 11.4-RELEASE before p3,...