Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992240)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992240 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: make sure skb-len != 0 when redirecting to a tunneling device syzkaller managed to trigger...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992678)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992678 advisory. In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb-len Packet length retrieved from skb data may be...

PT-2025-54067

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to memory management within the mlx5 driver. Specifically, a memory leak occurs during Precision Time Protocol PTP resynchronization operations,...

PT-2025-54121

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc5+ Description The Linux kernel contains a flaw in the RDMA/rxe module where a null pointer dereference can occur in the rxe qp do cleanup function when socket creation fails. This issue arises due to the...

PT-2025-53935

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-syzkaller-02734-g0326074ff465 Description The Linux kernel contained a flaw within the networking component, specifically in the hsr High Speed Resilient functionality. A null dereference issue was identifi...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unreleased skb, which could lead to a memory leak...

PT-2025-53956

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to TCP socket handling. Specifically, the sk error queue is not properly purged during socket closure, potentially leading to memory leaks and...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not freeing an unused skb, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the possible use of a null pointer after a failed clone of SKB, which could lead to a null pointer dereference...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992663)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992663 advisory. In the Linux kernel, the following vulnerability has been resolved: netsched: skbprio: Remove overly strict queue assertions In the current implementation, skbprio...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992627)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992627 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: socket: Lookup orig tuple for IPv6 SNAT nfsklookupslowv4 does the conntrack lookup for...

CVE-2025-68161

The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName https://logging.apache.org/log4j/2.x/manual/appenders/network.htmlSslConfiguration-attr-verifyHostName configuration attribut...

Linux Distros Unpatched Vulnerability : CVE-2023-54115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pcmcia: rsrcnonstatic: Fix memory leak in nonstaticreleaseresourcedb When nonstaticreleaseresourcedb frees all resources associated with an PCMCIA socket, it...

CVE-2025-68372

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

bpf: Check skb->transport_header is set in bpf_skb_check_mtu

...

SUSE CVE-2023-54085

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer dereference on fastopen early fallback In case of early fallback to TCP, subflowsynrecvsock deletes the subflow context before returning the newly allocated sock to the caller. The fastopen path does not...

SUSE CVE-2023-54094

In the Linux kernel, the following vulnerability has been resolved: net: prevent skb corruption on frag list segmentation Ian reported several skb corruptions triggered by rx-gro-list, collecting different oops alike: 62.624003 BUG: kernel NULL pointer dereference, address: 00000000000000c0...

SUSE CVE-2025-68725

In the Linux kernel, the following vulnerability has been resolved: bpf: Do not let BPF test infra emit invalid GSO types to stack Yinhao et al. reported that their fuzzer tool was able to trigger a skbwarnbadoffload from netifskbfeatures - gsofeaturescheck. When a BPF program - triggered via BPF...

EUVD-2023-60303

In the Linux kernel, the following vulnerability has been resolved: gtp: Fix use-after-free in gtpencapdestroy. syzkaller reported use-after-free in gtpencapdestroy. 0 It shows the same process freed sk and touched it illegally. Commit e198987e7dd7 "gtp: fix suspicious RCU usage" added locksock a...

EUVD-2023-60330

In the Linux kernel, the following vulnerability has been resolved: pcmcia: rsrcnonstatic: Fix memory leak in nonstaticreleaseresourcedb When nonstaticreleaseresourcedb frees all resources associated with an PCMCIA socket, it forgets to free socketdata too, causing a memory leak observable with...