Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004424)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004424 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001347)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001347 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000610)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000610 advisory. An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Tenable has extracted the...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003945)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003945 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003209)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003209 advisory. sound/core/timer.c in the Linux kernel through 4.6 does not initialize certain r1 data structures, which allows local users to obtain sensitive information from kern...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002588)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002588 advisory. An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Tenable has extracted the...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002730)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002730 advisory. An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993. Tenable has extracted the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003226)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003226 advisory. The sndtimeruserparams function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtai...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003042)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003042 advisory. sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a deni...

EUVD-2019-9405

Malware in sbrugna...

EUVD-2017-4684

Malware in sbrugna...

EUVD-2025-28947

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2016-2548

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of...

Linux Distros Unpatched Vulnerability : CVE-2019-19807

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to...

SUSE CVE-2016-2546

sound/core/timer.c in the Linux kernel before 4.4.1 uses an incorrect type of mutex, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...

SUSE CVE-2016-2547

sound/core/timer.c in the Linux kernel before 4.4.1 employs a locking approach that does not consider slave timer instances, which allows local users to cause a denial of service race condition, use-after-free, and system crash via a crafted ioctl call...

SUSE CVE-2016-4569

The sndtimeruserparams function in sound/core/timer.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface...

SUSE CVE-2017-13167

An elevation of privilege vulnerability in the kernel sound timer. Product: Android. Versions: Android kernel. Android ID A-37240993...

SUSE CVE-2019-19807

In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimeropen and sndtimercloselocked. The timeri variable was originally intended to be for a newly created timer instance, but was used for a...

kernel: use-after-free in sound/core/timer.c

A memory flaw was found in the ALSA subsystem of the Linux kernel. The struct sndtimerinstance function fails the timer-maxinstances check leading to an invalid address. This could lead to a use-after-free vulnerability...