Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

A use-after-free flaw was discovered in vhostnetsetbackend in drivers/vhost/net.c within the virtio network subcomponent of the Linux kernel, due to a double fget operation. This flaw could allow a local attacker to cause the system to crash, and could even lead to a kernel information leak issue...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

A vulnerability was discovered in vhostnewmsg in drivers/vhost/vhost.c within the Linux kernel. This issue arises due to the improper initialization of memory in messages transmitted between virtual guests and the host operating system, as implemented in the vhostnewmsg function. This vulnerabili...

Azure Linux 3.0 Security Update: qemu (CVE-2024-4693)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4693 advisory. - A flaw was found in the QEMU Virtio PCI Bindings hw/virtio/virtio-pci.c. An improper release and use of the irq...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001286)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001286 advisory. Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001087)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001087 advisory. The getrxbufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux RHEL 6 does n...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004245)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004245 advisory. In the Linux kernel before 5.5.8, getrawsocket in drivers/vhost/net.c lacks validation of an skfamily field, which might allow attackers to trigger kernel stack...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004165)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004165 advisory. An infinite loop issue was found in the vhostnet kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handlerx. It could...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000624)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000624 advisory. Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000666)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000666 advisory. drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users t...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002150)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002150 advisory. The getrxbufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux RHEL 6 does n...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003049)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003049 advisory. Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002295)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002295 advisory. The getrxbufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux RHEL 6 does n...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003076)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003076 advisory. A flaw was found in the Linux kernel's handlerx function in the vhostnet driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002568)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002568 advisory. Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001982)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001982 advisory. Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002344)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002344 advisory. Use-after-free vulnerability in the vhostnetsetbackend function in drivers/vhost/net.c in the Linux kernel through 3.10.3 allows local users to cause a denial of...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000506)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000506 advisory. In the Linux kernel before 5.5.8, getrawsocket in drivers/vhost/net.c lacks validation of an skfamily field, which might allow attackers to trigger kernel stack...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000331)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000331 advisory. An infinite loop issue was found in the vhostnet kernel module in Linux Kernel up to and including v5.1-rc6, while handling incoming packets in handlerx. It could...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000302)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000302 advisory. A flaw was found in the Linux kernel's handlerx function in the vhostnet driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds...

EUVD-2014-0149

Malware in sbrugna...