Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000883)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000883 advisory. The usbiprecvxbuff function in drivers/usb/usbip/usbipcommon.c in the Linux kernel before 4.5.3 allows remote attackers to cause a denial of service out-of-bounds...

CVE-2022-49389

CVE-2022-49389 concerns a refcount leak in the Linux kernel USB/IP path. The issue arises because usb_get_dev() is called in stub_device_alloc(), and if stub_probe() fails afterward, the reference must be released with usb_put_dev(). The fix moves usb_put_dev() to the sdev_free error path, ensuri...

The vulnerability of the usbip_recv_xbuff function (drivers/usb/usbip/usbip_common.c) in the Linux kernel allows a hacker to cause a service failure or exert other effects.

The vulnerability of the usbiprecvxbuff function in the Linux kernel’s drivers/usb/usbip/usbipcommon.c file is due to buffer overflow. Exploiting this vulnerability allows a remote attacker to cause a service failure memory spillage or other effects by using a specially crafted value in the USB/I...