Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989713)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989713 advisory. In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987704)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987704 advisory. In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the...

kernel: um: Fix out-of-bounds read in LDT setup

A vulnerability was found in the Linux kernel's user mode um subsystem, specifically within the Local Descriptor Table LDT setup functionality. The issue arises from the syscallstubdata function misinterpreting the datacount parameter as a byte count rather than a count of longs, leading to an...

DEBIAN-CVE-2022-49395

In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the number of longs, not bytes. ================================================================== BUG: KASAN: stack-out-of-bounds in...

UBUNTU-CVE-2022-49395

In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the number of longs, not bytes. ================================================================== BUG: KASAN: stack-out-of-bounds in...

CVE-2022-49395 um: Fix out-of-bounds read in LDT setup

In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the number of longs, not bytes. ================================================================== BUG: KASAN: stack-out-of-bounds in...

CVE-2022-49395 um: Fix out-of-bounds read in LDT setup

In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the number of longs, not bytes. ================================================================== BUG: KASAN: stack-out-of-bounds in...

CVE-2022-49395

CVE-2022-49395 concerns the Linux kernel, where an out-of-bounds read occurs in LDT setup due to syscall_stub_data() treating data_count as bytes instead of longs. This yields a 128-byte read on the stack (local to swapper/1) and is triggered during LDT entry initialization. Public advisories fro...

PT-2025-8329 · Linux +6 · Linux Kernel +6

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.18.0+ Description: The issue is related to an out-of-bounds read in LDT setup. The syscall stub data function expects the data count parameter to be the number of longs, not bytes. This can lead to a...