Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001838)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001838 advisory. arch/x86/kernel/entry32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002180)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002180 advisory. arch/x86/kernel/entry32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002644)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002644 advisory. A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003099)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003099 advisory. A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001770)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001770 advisory. The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags...

CVE-2019-2249

Kernel can do a memory read from arbitrary address passed by user during execution of a syscall in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9205, MDM9650, QCA8081,...

CVE-2025-1115

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

TFTP Fetch, Linux Reboot

Fetch and execute an RISC-V 32-bit payload from a TFTP server. A very small shellcode for rebooting the system using the reboot syscall. This payload is sometimes helpful for testing purposes. Requires CAPSYSBOOT privileges. Module Options msf use payload/cmd/linux/tftp/riscv32le/reboot msf...

EUVD-2023-60464

In the Linux kernel, the following vulnerability has been resolved: quota: fix warning in dqgrab There's issue as follows when do fault injection: WARNING: CPU: 1 PID: 14870 at include/linux/quotaops.h:51 dquotdisable+0x13b7/0x18c0 Modules linked in: CPU: 1 PID: 14870 Comm: fsconfig Not tainted...

Linux Reboot

A very small shellcode for rebooting the system using the reboot syscall. This payload is sometimes helpful for testing purposes. Requires CAPSYSBOOT privileges. Module Options msf use payload/linux/loongarch64/reboot msf payloadreboot show actions ...actions... msf payloadreboot set ACTION msf...

CVE-2025-40287

An infinite loop vulnerability was found in the exFAT filesystem driver in the Linux kernel. The exfatfind function does not validate if dentry.stream.validsize is negative. A malformed exFAT filesystem with such entries causes the kernel to hang during file operations like open, truncate, or wri...

USN-7887-2: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

USN-7835-6 linux-aws-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

USN-7835-6: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

kernel: cachestat: fix page cache statistics permission checking

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat' system call was added in commit cf264e1329fb "cachestat: implement cachestat syscall", it was meant to be a much more convenient and performant version...

USN-7835-5: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989562)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989562 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: compat: Do not treat syscall number as ESRELx for a bad syscall If a compat process tries ...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989713)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989713 advisory. In the Linux kernel, the following vulnerability has been resolved: um: Fix out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989601)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989601 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: compat: Do not treat syscall number as ESRELx for a bad syscall If a compat process tries ...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: arm64/ptrace: Fixed a stack-out-of-bounds read in regsgetkernelstacknth. KASAN reported a stack-out-of-bounds read in regsgetkernelstacknth. Call Trace: 97.283505 BUG: KASAN: stack-out-of-bounds in...