GHSA-VVMG-8MJR-G6Q3 OpenTelemetry eBPF Instrumentation: Log enricher writev path can overread and overwrite user buffers

Summary OBI's log enricher mishandles writev buffers by reading only the first iovec entry but using the total ioviter.count as the copy length. When log injection is enabled, a crafted multi-segment writev call can make OBI read and overwrite memory beyond the first segment. Details In...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002338)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002338 advisory. The fusefillwritepages function in fs/fuse/file.c in the Linux kernel before 4.4 allows local users to cause a denial of service infinite loop via a writev system ca...

UBUNTU-CVE-2008-7316

mm/filemap.c in the Linux kernel before 2.6.25 allows local users to cause a denial of service infinite loop via a writev system call that triggers an iovec of zero length, followed by a page fault for an iovec of nonzero length...