Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003312)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003312 advisory. An issue was discovered in the Linux kernel before 4.20. There is a race condition in smptasktimedout and smptaskdone in drivers/scsi/libsas/sasexpander.c, leading t...

kernel: race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c leads to use-after-free

A flaw was found in the Linux kernel’s implementation of the SAS expander subsystem, where a race condition exists in the smptasktimedout and smptaskdone in drivers/scsi/libsas/sasexpander.c. An attacker could abuse this flaw to corrupt memory and escalate privileges...

The vulnerabilities of the functions smp_task_timedout() and smp_task_done() in the Linux kernel’s drivers/scsi/libsas/sas_expander.c file allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerabilities of the functions smptasktimedout and smptaskdone in the Linux kernel’s drivers/scsi/libsas/sasexpander.c file are related to synchronization errors when using shared resources. Exploiting these vulnerabilities can allow an attacker to compromise the confidentiality, integrity,...

PT-2018-2968 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.20 Description: The issue is related to errors in synchronization when using a shared resource, specifically a race condition in the smp task timedout and smp task done functions in the drivers/scsi/libsas/sas...