Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987317)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987317 advisory. In the Linux kernel, the following vulnerability has been resolved: dma-buf/syncfile: Don't leak fences on merge failure Each addfence call does a dmafenceget on the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987313)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987313 advisory. In the Linux kernel, the following vulnerability has been resolved: ath11k: mhi: use mhisyncpowerup If amss.bin was missing ath11k would crash during 'rmmod...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987080)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987080 advisory. In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible use-after-free in HFCcleanup This module's remove path calls deltimer. Howeve...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986404)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986404 advisory. In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible use-after-free in HFCcleanup This module's remove path calls deltimer. Howeve...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987337)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987337 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC There is a small race window at sndpcmosssync that is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-386530)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-386530 advisory. In the Linux kernel, the following vulnerability has been resolved: media: bttv: fix use after free error due to btv-timeout timer There may be some a race conditio...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986730)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986730 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free in wdtstartup This module's remove path calls deltimer...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-388201)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-388201 advisory. In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from syncprintobj Since commit a6aa8fca4d79 dma-buf/sw-sync:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986401)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986401 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free by calling deltimersync This driver's remove path calls...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986540)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986540 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free by calling deltimersync This driver's remove path calls...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986940)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986940 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free by calling deltimersync This driver's remove path calls...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-381407)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-381407 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: rtl8xxxu: add cancelworksync for c2hcmdwork The workqueue might still be running, when the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986568)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986568 advisory. In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fix possible use-after-free in nicstarcleanup This module's remove path calls...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987260)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987260 advisory. In the Linux kernel, the following vulnerability has been resolved: ASoC: rt5645: Fix errorenous cleanup order There is a logic error when removing rt5645 device as...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-381917)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-381917 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: Add cancelworksync before module remove If we remove the module which will call...

chromium -- multiple security fixes

Chrome Releases reports: This update includes 3 security fixes: 443196747 High CVE-2025-11458: Heap buffer overflow in Sync. Reported by raven at KunLun lab on 2025-09-05 446722008 High CVE-2025-11460: Use after free in Storage. Reported by Sombra on 2025-09-23 441917796 Medium CVE-2025-11211: Ou...

SUSE CVE-2023-53587

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Sync IRQ works before buffer destruction If something was written to the buffer just before destruction, it may be possible maybe not in a real system, but it did happen in ARCH=um with time-travel to destroy the...

smb: client: let smbd_destroy() call disable_work_sync(&info->post_send_credits_work)

...

UBUNTU-CVE-2023-53552

In the Linux kernel, the following vulnerability has been resolved: drm/i915: mark requests for GuC virtual engines to avoid use-after-free References to i915requests may be trapped by userspace inside a syncfile or dmabuf dma-resv and held indefinitely across different proceses. To counter-act t...

EUVD-2025-32383

In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnicdeletetask The original code uses canceldelayedwork in cniccmstopbnx2xhw, which does not guarantee that the delayed work item 'deletetask' has fully completed if it was already running...