CVE-2026-31597

The CVE-2026-31597 vulnerability affects the Linux kernel OCFS2 code. A use-after-free occurs in ocfs2_fault() when VM_FAULT_RETRY triggers after filemap_fault() drops mmap_lock, allowing a concurrent munmap() to free the vm_area_struct and causing ocfs2_fault() to dereference a dangling vma. The...

EUVD-2026-25490

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix use-after-free in ocfs2fault when VMFAULTRETRY filemapfault may drop the mmaplock before returning VMFAULTRETRY, as documented in mm/filemap.c: "If our return value has VMFAULTRETRY set, it's because the mmaplock may b...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ocfs2 file system’s ocfs2fault function. When filemapfault returns VMFAULTRETRY, it may relea...

PT-2026-35000

In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nr pages calculation overflow in filemap map pages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very strange crash issues showing up as "Bad page state": " 734.496287 BUG: B...

PT-2026-34949

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the ocfs2 fault function. This occurs because filemap fault may drop the mmap lock before returning VM FAULT RETRY. In such cases, a concurrent munmap ca...

SUSE CVE-2026-31479

In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workload, user is reporting hitting: 413.361679 WARNING: drivers/gpu/drm/xe/xevm.c:1217 at vmbindioctlopsunwind+0x1e2/0x2e0 xe, CPU7: vkd3dqueue/9925 413.361944 CPU: 7 UID:...

EUVD-2026-24838

In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workload, user is reporting hitting: 413.361679 WARNING: drivers/gpu/drm/xe/xevm.c:1217 at vmbindioctlopsunwind+0x1e2/0x2e0 xe, CPU7: vkd3dqueue/9925 413.361944 CPU: 7 UID:...

PT-2026-34384

In the Linux kernel, the following vulnerability has been resolved: drm/xe: always keep track of remap prev/next During 3D workload, user is reporting hitting: 413.361679 WARNING: drivers/gpu/drm/xe/xe vm.c:1217 at vm bind ioctl ops unwind+0x1e2/0x2e0 xe, CPU7: vkd3d queue/9925 413.361944 CPU: 7...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-013391)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013391 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: /proc/pid/smapsrollup: fix no vma's null-deref Commit 258f669e7e88 mm: /proc/pid/smapsrollup:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013814)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013814 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: /proc/pid/smapsrollup: fix no vma's null-deref Commit 258f669e7e88 mm: /proc/pid/smapsrollup:...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-013158)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013158 advisory. In the Linux kernel, the following vulnerability has been resolved: pstore: Avoid kcore oops by vmaping with VMIOREMAP An oops can be induced by running 'cat...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013052)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013052 advisory. In the Linux kernel, the following vulnerability has been resolved: amdgpu: validate offsetinbo of drmamdgpugemva This is motivated by OOB access in...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006974)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006974 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/gntdev: Accommodate VMA splitting Prior to this commit, the gntdev driver code did not handle...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013151)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013151 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Use VMMAP instead of VMALLOC for ringbuf After commit 2fd3fb0be1d1 kasan, vmalloc: unpoison...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011120)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011120 advisory. In the Linux kernel, the following vulnerability has been resolved: pstore: Avoid kcore oops by vmaping with VMIOREMAP An oops can be induced by running 'cat...

EUVD-2018-21770

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

CVE-2026-34988

A flaw was found in Wasmtime, a runtime for WebAssembly. When Wasmtime's pooling allocator is configured with specific settings, it fails to properly reset virtual memory permissions. This oversight allows a malicious WebAssembly instance to read sensitive data from the linear memory of a...

UBUNTU-CVE-2026-34988

Wasmtime is a runtime for WebAssembly. From 28.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of its pooling allocator contains a bug where in certain configurations the contents of linear memory can be leaked from one instance to the next. The implementation of resetting the...

CVE-2026-34988 Wasmtime leaks data between pooling allocator instances

Wasmtime is a runtime for WebAssembly. From 28.0.0 to before 36.0.7, 42.0.2, and 43.0.1, Wasmtime's implementation of its pooling allocator contains a bug where in certain configurations the contents of linear memory can be leaked from one instance to the next. The implementation of resetting the...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006776)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006776 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/mm/pat: fix VMPAT handling in COW mappings PAT handling won't do the right thing in COW...