14422 matches found
Unity Linux 20.1070e Security Update: tigervnc (UTSA-2026-000530)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000530 advisory. In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000230)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000230 advisory. In the Linux kernel before 4.20.8, kvmioctlcreatedevice in virt/kvm/kvmmain.c mishandles reference counting because of a race condition, leading to a use-after-free...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000311)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000311 advisory. An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmisi module is removed,...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000415)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000415 advisory. A memory leak in the dwc3pciprobe function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service memory...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000403)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000403 advisory. The Linux kernel 4.9.x before 4.9.233, 4.14.x before 4.14.194, and 4.19.x before 4.19.140 has a use-after- free because skcd-norefcnt was not considered during a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000393)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000393 advisory. Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more th...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-django (UTSA-2026-000163)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000163 advisory. In Django 3.2 before 3.2.17, 4.0 before 4.0.9, and 4.1 before 4.1.6, the parsed values of Accept-Language headers are cached in order to avoid repetitive parsing. Th...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000394)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000394 advisory. The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000238)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000238 advisory. A flaw was found in the Linux kernel's NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bcsvcprocess use wrong...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000248)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000248 advisory. kvmpvsendipi in arch/x86/kvm/lapic.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service NULL pointer dereference and BUG via crafted...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000421)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000421 advisory. A flaw was found in the Linux kernels futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000470)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000470 advisory. In the Linux kernel, picknextrtentity may return a type confused entry, not detected by the BUGON condition, as the confused entry will not be NULL, but listhead.The...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000462)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000462 advisory. In the Linux kernel before 5.3.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000240)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000240 advisory. An issue was discovered in the Linux kernel through 4.19. An information leak in cdromioctlselectdisc in drivers/cdrom/cdrom.c could be used by local attackers to re...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000513)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000513 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a NULL pointer dereference in pnfsmarkmatchinglsegsreturn Commit de144ff4234f changes...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000307)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000307 advisory. A memory leak in the ath10kusbhiftxsg function in drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-django (UTSA-2026-000180)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000180 advisory. An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize and urlizetrunc template filters, and the AdminURLFieldWidget widget, are subjec...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-django (UTSA-2026-000158)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000158 advisory. A SQL injection issue was discovered in QuerySet.explain in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. This occurs by passing a crafted...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000331)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000331 advisory. An infinite loop issue was found in the vhostnet kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handlerx. It could...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000332)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000332 advisory. In the Linux kernel before 5.7.8, fs/nfsd/vfs.c in the NFS server can set incorrect permissions on new filesystem objects when the filesystem lacks ACL support, aka...