Linux Distros Unpatched Vulnerability : CVE-2026-21636

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw in Node.js's permission model allows Unix Domain Socket UDS connections to bypass network restrictions when --permission is enabled. Even without...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003506)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003506 advisory. Memory leak in the irdabind function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause ...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003129)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003129 advisory. Linux kernel: heap out-of-bounds in AFPACKET sockets. This new issue is analogous to previously disclosed CVE-2016-8655. In both cases, a socket option that changes...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003320)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003320 advisory. In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanoutadd from setsockopt and bind on an AFPACKET socket. This issue...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002294)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002294 advisory. The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001805)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001805 advisory. The driverrfc4106decrypt function in arch/x86/crypto/aesni-intelglue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003539)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003539 advisory. An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...

PT-2026-3109

An Incorrect Permission Assignment for Critical Resource vulnerability in the Juniper DHCP daemon jdhcpd of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged user to write to the Unix socket used to manage the jdhcpd process, resulting in complete control over the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001860)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001860 advisory. Race condition in net/sctp/socket.c in the Linux kernel before 4.1.2 allows local users to cause a denial of service list corruption and panic via a rapid series of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001949)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001949 advisory. The Linux kernel before 4.4.1 allows local users to bypass file-descriptor limits and cause a denial of service memory consumption by sending each descriptor over a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001956)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001956 advisory. The sctpinit function in net/sctp/protocol.c in the Linux kernel before 4.2.3 has an incorrect sequence of protocol-initialization steps, which allows local users to...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001813)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001813 advisory. The rfcommsockrecvmsg function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002450)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002450 advisory. crypto/algifskcipher.c in the Linux kernel before 4.4.2 does not verify that a setkey operation has been performed on an AFALG socket before an accept system call is...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002141)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002141 advisory. The rfcommsockbind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002005)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002005 advisory. crypto/mcryptd.c in the Linux kernel before 4.8.15 allows local users to cause a denial of service NULL pointer dereference and system crash by using an AFALG socket...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002286)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002286 advisory. The evmupdateevmxattr function in security/integrity/evm/evmcrypto.c in the Linux kernel before 3.7.5, when the Extended Verification Module EVM is enabled, allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002519)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002519 advisory. net/tipc/socket.c in the Linux kernel before 3.9-rc7 does not initialize a certain data structure and a certain length variable, which allows local users to obtain...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003329)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003329 advisory. Race condition in net/packet/afpacket.c in the Linux kernel through 4.8.12 allows local users to gain privileges or cause a denial of service use-after-free by...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003561)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003561 advisory. The irdasetsockopt function in net/irda/afirda.c and later in drivers/staging/irda/net/afirda.c in the Linux kernel before 4.17 allows local users to cause a denial ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003087)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003087 advisory. An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8...