Unity Linux 20.1050e / 20.1070e Security Update: iSulad (UTSA-2026-017406)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017406 advisory. Time-of-check Time-of-use TOCTOU Race Condition vulnerability in openEuler iSulad on Linux allows Leveraging Time-of-Check and Time-of-Use TOCTOU Race Conditions. Th...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017723)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017723 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Stored Procedure. Supported versions that are affected are 8.0.23 and prior. Easily...

Unity Linux 20.1060e / 20.1070e Security Update: flatpak (UTSA-2026-017552)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017552 advisory. Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In Flatpack since version 0.9.4 and before version 1.10.2 has a...

Unity Linux 20.1070e Security Update: hdf5 (UTSA-2026-017710)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017710 advisory. An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5Ochunkdeserialize in H5Ocache.c. Tenable has extracted the preceding...

Unity Linux 20.1060e / 20.1070e Security Update: binutils (UTSA-2026-017409)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017409 advisory. An out of bounds flaw was found in GNU binutils objdump utility version 2.36. An attacker could use this flaw and pass a large section to...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017449)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017449 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Options. Supported versions that are affected are 8.0.26 and prior. Difficult to exploit...

Unity Linux 20.1060e / 20.1070e Security Update: php (UTSA-2026-017496)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017496 advisory. In PHP versions 7.3.x below 7.3.26, 7.4.x below 7.4.14 and 8.0.0, when validating URL with functions like filtervar$url, FILTERVALIDATEURL, PHP will accept an URL wi...

Unity Linux 20.1070e Security Update: hdf5 (UTSA-2026-017688)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017688 advisory. A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017774)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017774 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: LDAP Auth. Supported versions that are affected are 8.0.21 and prior. Easily...

Unity Linux 20.1060e / 20.1070e Security Update: nodejs (UTSA-2026-017558)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017558 advisory. Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uvidnatoascii is used to convert strings to ASCII. The pointer p is read and...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017701)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017701 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.23 and prior. Easily exploitable...

Unity Linux 20.1070e Security Update: libarchive (UTSA-2026-017751)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017751 advisory. An improper link resolution flaw can occur while extracting an archive leading to changing modes, times, access control lists, and flags of a file outside of the...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017678)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017678 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017702)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017702 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.22 and prior. Easily exploitable...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: edk2 (UTSA-2026-017403)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017403 advisory. NetworkPkg/IScsiDxe has remotely exploitable buffer overflows. Tenable has extracted the preceding description block directly from the Unity Linux security advisory...

Unity Linux 20.1060e / 20.1070e Security Update: openjpeg2 (UTSA-2026-017604)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017604 advisory. Integer Overflow in OpenJPEG v2.4.0 allows remote attackers to crash the application, causing a Denial of Service DoS. This occurs when the attacker uses the command...

Unity Linux 20.1060e / 20.1070e Security Update: json-lib (UTSA-2026-017417)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017417 advisory. Apache Log4j2 2.0-beta9 through 2.15.0 excluding security releases 2.12.2, 2.12.3, and 2.3.1 JNDI features used in configuration, log messages, and parameters do not...

Unity Linux 20.1070e Security Update: transfig (UTSA-2026-017462)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017462 advisory. A double-free vulnerability exists in fig2dev through 3.28a is affected by: via the freestream function in readpics.c, which could cause a denial of service...

Unity Linux 20.1060e / 20.1070e Security Update: samba (UTSA-2026-017653)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017653 advisory. A flaw was found in samba. Spaces used in a string around a domain name DN, while supposed to be ignored, can cause invalid DN strings with spaces to instead write a...

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017531 advisory. A flaw was discovered in ldapX509dn2bv in OpenLDAP before 2.4.57 leading to a slapd crash in the X.509 DN parsing in adkeystring, resulting in denial of service...