CVE-2025-59961 Junos OS and Junos OS Evolved: Unix socket used to control the jdhcpd process is world-writable

An Incorrect Permission Assignment for Critical Resource vulnerability in the Juniper DHCP daemon jdhcpd of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user to write to the Unix socket used to manage the jdhcpd process, resulting in complete control over the...

CVE-2025-59961

CVE-2025-59961 describes an Incorrect Permission Assignment vulnerability in Juniper’s DHCP daemon (jdhcpd) used by Junos OS and Junos OS Evolved. A local, low-privilege user can write to the Unix socket that manages jdhcpd, enabling administrative control over the DHCP service. Affected products...

EUVD-2026-2702

An Incorrect Permission Assignment for Critical Resource vulnerability in the Juniper DHCP daemon jdhcpd of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user to write to the Unix socket used to manage the jdhcpd process, resulting in complete control over the...

CVE-2025-59961 Junos OS and Junos OS Evolved: Unix socket used to control the jdhcpd process is world-writable

An Incorrect Permission Assignment for Critical Resource vulnerability in the Juniper DHCP daemon jdhcpd of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user to write to the Unix socket used to manage the jdhcpd process, resulting in complete control over the...

net/handshake: duplicate handshake cancellations leak socket

...

CVE-2025-68775

A race condition flaw was found in the Linux kernel's network handshake subsystem. When duplicate handshake cancellation requests arrive for the same TLS handshake such as during SUNRPC/NFS TLS negotiation timeouts, the code fails to detect the duplicate and incorrectly manipulates the socket...

SUSE CVE-2025-68775

In the Linux kernel, the following vulnerability has been resolved: net/handshake: duplicate handshake cancellations leak socket When a handshake request is cancelled it is removed from the handshakenet-hnrequests list, but it is still present in the handshakerhashtbl until it is destroyed. If a...

CVE-2025-68768

In the Linux kernel, the following vulnerability has been resolved: inet: frags: flush pending skbs in fqdirpreexit We have been seeing occasional deadlocks on pernetopsrwsem since September in NIPA. The stuck task was usually modprobe often loading a driver like ipvlan, trying to take the lock a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002784)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002784 advisory. An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land an...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002613)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002613 advisory. In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanoutadd from setsockopt and bind on an AFPACKET socket. This issue...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002038)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002038 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002274)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002274 advisory. The mISDNsockrecvmsg function in drivers/isdn/mISDN/socket.c in the Linux kernel before 3.12.4 does not ensure that a certain length value is consistent with the siz...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002363)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002363 advisory. The rdsconncreate function in net/rds/connection.c in the Linux kernel through 4.2.3 allows local users to cause a denial of service NULL pointer dereference and...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003401)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003401 advisory. Race condition in net/packet/afpacket.c in the Linux kernel through 4.8.12 allows local users to gain privileges or cause a denial of service use-after-free by...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002099)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002099 advisory. The networking implementation in the Linux kernel through 4.3.3, as used in Android and other products, does not validate protocol identifiers for certain protocol...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003115)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003115 advisory. Stack-based buffer overflow in the brcmfcfg80211startap function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.7.5 allo...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002455)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002455 advisory. The PPPoL2TP feature in net/l2tp/l2tpppp.c in the Linux kernel through 3.15.6 allows local users to gain privileges by leveraging data-structure differences between ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002209)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002209 advisory. Race condition in the rdssendmsg function in net/rds/sendmsg.c in the Linux kernel before 4.3.3 allows local users to cause a denial of service NULL pointer...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003493)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003493 advisory. Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002732)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002732 advisory. In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor,...