Detections
Analytics

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987514)

medium Nessus Plugin ID 270936

Synopsis

The Unity Linux host is missing one or more security updates.

Description

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987514 advisory.

 In the Linux kernel, the following vulnerability has been resolved:

 IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr

 This buffer is currently allocated in hfi1_init():

 if (reinit) ret = init_after_reset(dd);
 else ret = loadtime_init(dd);
 if (ret) goto done;

 /* allocate dummy tail memory for all receive contexts */ dd->rcvhdrtail_dummy_kvaddr = dma_alloc_coherent(&dd->pcidev->dev, sizeof(u64), &dd->rcvhdrtail_dummy_dma, GFP_KERNEL);

 if (!dd->rcvhdrtail_dummy_kvaddr) { dd_dev_err(dd, cannot allocate dummy tail memory\n);
 ret = -ENOMEM;
 goto done;
 }

 The reinit triggered path will overwrite the old allocation and leak it.

 Fix by moving the allocation to hfi1_alloc_devdata() and the deallocation to hfi1_free_devdata().

Tenable has extracted the preceding description block directly from the Unity Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected kernel package.

See Also

http://www.nessus.org/u?a89a067e

http://www.nessus.org/u?4c6fe27f

https://nvd.nist.gov/vuln/detail/CVE-2021-47523

Plugin Details

Severity: Medium

ID: 270936

File Name: unity_linux_UTSA-2025-987514.nasl

Version: 1.1

Type: local

Published: 10/21/2025

Updated: 10/21/2025

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 4.6

Temporal Score: 3.4

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

CVSS Score Source: CVE-2021-47523

CVSS v3

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/UOS-Server/release, Host/UOS-Server/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 10/15/2025

Vulnerability Publication Date: 7/21/2021

Reference Information

CVE: CVE-2021-47523