Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990806)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990806 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp: cdg: allow tcpcdgrelease to be called multiple times Apparently, mptcp is able to call...

CVE-2022-49775

CVE-2022-49775 (Linux kernel) affects the tcp_cdg congestion control. The advisory notes that when MPTCP calls tcp_disconnect() on an already-disconnected flow under CDG, it may trigger a double-free in the SLAB allocator. The vulnerability arises from the ability to call tcp_cdg_release() multip...

PT-2025-18492 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.0.0 Description: A double-free vulnerability has been identified in the Linux kernel, specifically in the tcp cdg release function. This issue can be triggered when mptcp calls tcp disconnect on an already...

PT-2022-36468 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.267 Description: The issue allows the tcp cdg release function to be called multiple times. This is a potential security concern, although the actual impact and attack plausibility have not yet been proven...

PT-2022-36277 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.156 Description: The issue allows the tcp cdg release function to be called multiple times. This is a potential security concern, although the actual impact and attack plausibility have not yet been proven...

PT-2022-35950 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v4.2 through v6.0.9 Description: The issue allows the tcp cdg release function to be called multiple times. This is a potential security concern, although the actual impact and attack plausibility have not yet been prove...