Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017743)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017743 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prio...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: edk2 (UTSA-2026-017403)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017403 advisory. NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. Tenable has extracted the preceding description block directly from the Unity Linux security advisory...

Unity Linux 20.1060e / 20.1070e Security Update: json-lib (UTSA-2026-017417)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017417 advisory. Apache Log4j2 2.0-beta9 through 2.15.0 excluding security releases 2.12.2, 2.12.3, and 2.3.1 JNDI features used in configuration, log messages, and parameters do not...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017531 advisory. A flaw was discovered in ldapX509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in adkeystring, resulting in denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: nodejs (UTSA-2026-017558)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017558 advisory. Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uvidnatoascii is used to convert strings to ASCII. The pointer p is read and...

Unity Linux 20.1070e Security Update: transfig (UTSA-2026-017462)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017462 advisory. A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the freestream function in readpics.c, which could cause a denial of service...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017456)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017456 advisory. Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 8.0.26 and prior. Difficult to explo...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017678)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017678 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior...

Unity Linux 20.1060e / 20.1070e Security Update: exiv2 (UTSA-2026-017638)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017638 advisory. Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2...

Unity Linux 20.1060e / 20.1070e Security Update: dnsmasq (UTSA-2026-017412)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017412 advisory. A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwardi...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017451)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017451 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable...

Unity Linux 20.1060e / 20.1070e Security Update: zstd (UTSA-2026-017635)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017635 advisory. Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permission...

Unity Linux 20.1060e / 20.1070e Security Update: tomcat (UTSA-2026-017612)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017612 advisory. When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers an...

Unity Linux 20.1060e / 20.1070e Security Update: samba (UTSA-2026-017653)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017653 advisory. A flaw was found in samba. Spaces used in a string around a domain name DN, while supposed to be ignored, can cause invalid DN strings with spaces to instead write a...

Unity Linux 20.1060e / 20.1070e Security Update: mutt (UTSA-2026-017499)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017499 advisory. rfc822.c in Mutt through 2.0.4 allows remote attackers to cause a denial of service mailbox unavailability by sending email messages with sequences of semicolon...

Unity Linux 20.1070e Security Update: hdf5 (UTSA-2026-017780)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017780 advisory. A SIGFPE signal is raised in the function H5Dchunksetinforeal of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because o...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017716)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017716 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.23 and prior. Easily exploitable...

Unity Linux 20.1060e / 20.1070e Security Update: jackson-databind (UTSA-2026-017603)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017603 advisory. FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadgets and typing, related to...

Unity Linux 20.1060e / 20.1070e Security Update: audiofile (UTSA-2026-017495)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017495 advisory. Integer overflow in sfcommands/sfconvert.c in Audio File Library aka audiofile 0.3.6 allows remote attackers to cause a denial of service crash via a crafted file...

Unity Linux 20.1060e / 20.1070e Security Update: jackson-databind (UTSA-2026-017542)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017542 advisory. A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity XXE...