Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002326)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002326 advisory. Race condition in the ttyioctl function in drivers/tty/ttyio.c in the Linux kernel through 4.4.1 allows local users to obtain sensitive information from kernel memor...

EUVD-2013-5016

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986749)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986749 advisory. In the Linux kernel, the following vulnerability has been resolved: ipack: ipoctal: fix stack information leak The tty driver name is used also after registering the...

CVE-2021-46904

A vulnerability was found in the Linux kernel. A null-ptr-deref flaw was found during tty device unregistration...

CVE-2021-46904

In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the next one results in ...

CVE-2021-46904

In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the next one results in ...

UBUNTU-CVE-2021-46904

In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the next one results in ...

CVE-2021-46904

In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the next one results in ...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a NULL pointer dereference problem during tty device logout...

CVE-2021-46904

In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the next one results in ...

Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-003)

The version of kernel installed on the remote host is prior to 5.4.117-58.216. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2022-003 advisory. 2024-05-23: CVE-2021-46974 was added to this advisory. 2024-05-23: CVE-2021-46909 was added to this advisor...

kernel: double free in bluetooth subsystem when the HCI device initialization fails

A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system...

CVE-2017-2636

A race condition flaw was found in the NHLDC Linux kernel driver when accessing nhdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system. Mitigation The nhdlc kern...

CVE-2017-1000367 in Sudo's get_process_ttyname() for Linux

======================================================================== Contents ======================================================================== Analysis Exploitation Example Acknowledgments ======================================================================== Analysis...

GLSA-201705-15 : sudo: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-201705-15 sudo: Privilege escalation Qualys discovered a vulnerability in sudos getprocessttyname for Linux, that via sudottynamescan can be directed to use a user-controlled, arbitrary tty device during its traversal of /dev by...

sudo: Privilege escalation

Background sudo su “do” allows a system administrator to delegate authority to give certain users or groups of users the ability to run some or all commands as root or another user while providing an audit trail of the commands and their arguments. Description Qualys discovered a vulnerability in...

kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()

A race condition flaw was found in the NHLDC Linux kernel driver when accessing nhdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system...

kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()

A race condition flaw was found in the NHLDC Linux kernel driver when accessing nhdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system...

kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()

A race condition flaw was found in the NHLDC Linux kernel driver when accessing nhdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system...

kernel: Race condition access to n_hdlc.tbuf causes double free in n_hdlc_release()

A race condition flaw was found in the NHLDC Linux kernel driver when accessing nhdlc.tbuf list that can lead to double free. A local, unprivileged user able to set the HDLC line discipline on the tty device could use this flaw to increase their privileges on the system...