EUVD-2026-24825

In the Linux kernel, the following vulnerability has been resolved: media: mc, v4l2: serialize REINIT and REQBUFS with reqqueuemutex MEDIAREQUESTIOCREINIT can run concurrently with VIDIOCREQBUFS0 queue teardown paths. This can race request object cleanup against vb2 queue cancellation and lead to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003025)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003025 advisory. drivers/media/v4l2-core/videobuf2-v4l2.c in the Linux kernel before 4.5.3 allows local users to cause a denial of service kernel memory write operation or possibly...

EUVD-2025-201643

In the Linux kernel, the following vulnerability has been resolved: media: videobuf2: forbid removebufs when legacy fileio is active vb2ioctlremovebufs call manipulates queue internal buffer list, potentially overwriting some pointers used by the legacy fileio access mode. Forbid that ioctl when...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989517)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989517 advisory. In the Linux kernel, the following vulnerability has been resolved: media: stk1160: If start stream fails, return buffers with VB2BUFSTATEQUEUED If the callback...

PT-2025-40204

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc1-00023-g6c94e2e99343 Description The vsp1 driver in the Linux kernel incorrectly uses the vb2 is streaming function to determine if the .start streaming operation has been called. A change in the vb2 cor...