USN-7861-1: Linux kernel vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990459)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990459 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: tty: serial: Fix deadlock in sa1100settermios There is a deadlock in sa1100settermios,...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990555)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990555 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192u: Fix deadlock in ieee80211beaconsstop There is a deadlock in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990572)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990572 advisory. In the Linux kernel, the following vulnerability has been resolved: x86: stop playing stack games in profilepc The 'profilepc' function is used for timer-based...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990399)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990399 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: usb: host: Fix deadlock in oxubussuspend There is a deadlock in oxubussuspend, which is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989320)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989320 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciqca: Use deltimersync before freeing While looking at a crash report on a timer lis...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989730)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989730 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: xtIDLETIMER: fix panic that occurs when timertype has garbage value Currently, when th...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988871)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988871 advisory. In the Linux kernel, the following vulnerability has been resolved: atm: iphase: fix possible use-after-free in iamoduleexit This module's remove path calls deltimer...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988707)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988707 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192e: Fix deadlock in rtllibbeaconsstop There is a deadlock in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989127)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989127 advisory. In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fix possible use-after-free in nicstarcleanup This module's remove path calls...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988909)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988909 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: usb: host: Fix deadlock in oxubussuspend There is a deadlock in oxubussuspend, which is...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989006)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989006 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix call timer start racing with call destruction The rxrpccall struct has a timer used to...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990112)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990112 advisory. In the Linux kernel, the following vulnerability has been resolved: x86: stop playing stack games in profilepc The 'profilepc' function is used for timer-based...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989405)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989405 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free in wdtstartup This module's remove path calls deltimer...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988923)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988923 advisory. In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192u: Fix deadlock in ieee80211beaconsstop There is a deadlock in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989821)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989821 advisory. In the Linux kernel, the following vulnerability has been resolved: x86: stop playing stack games in profilepc The 'profilepc' function is used for timer-based...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989879)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989879 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: sc520wdt: Fix possible use-after-free in wdtturnoff This module's remove path calls...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988847)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988847 advisory. In the Linux kernel, the following vulnerability has been resolved: netrom: Decrease sock refcount when sock timers expire Commit 63346650c1a9 netrom: switch to sock...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989107)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989107 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: fix a race in rxrpcexitnet Current code can lead to the following race: CPU0 CPU1...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989105)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989105 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: schtaprio: properly cancel timer from tapriodestroy There is a comment in qdisccreate...