Detections
Analytics

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990620)

medium Nessus Plugin ID 274130

Synopsis

The Unity Linux host is missing one or more security updates.

Description

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990620 advisory.

 In the Linux kernel, the following vulnerability has been resolved:

 crypto: pcrypt - Fix hungtask for PADATA_RESET

 We found a hungtask bug in test_aead_vec_cfg as follows:

 INFO: task cryptomgr_test:391009 blocked for more than 120 seconds.
 echo 0 > /proc/sys/kernel/hung_task_timeout_secs disables this message.
 Call trace:
 __switch_to+0x98/0xe0
 __schedule+0x6c4/0xf40 schedule+0xd8/0x1b4 schedule_timeout+0x474/0x560 wait_for_common+0x368/0x4e0 wait_for_completion+0x20/0x30 wait_for_completion+0x20/0x30 test_aead_vec_cfg+0xab4/0xd50 test_aead+0x144/0x1f0 alg_test_aead+0xd8/0x1e0 alg_test+0x634/0x890 cryptomgr_test+0x40/0x70 kthread+0x1e0/0x220 ret_from_fork+0x10/0x18 Kernel panic - not syncing: hung_task: blocked tasks

 For padata_do_parallel, when the return err is 0 or -EBUSY, it will call wait_for_completion(&wait->completion) in test_aead_vec_cfg. In normal case, aead_request_complete() will be called in pcrypt_aead_serial and the return err is 0 for padata_do_parallel. But, when pinst->flags is PADATA_RESET, the return err is -EBUSY for padata_do_parallel, and it won't call aead_request_complete(). Therefore, test_aead_vec_cfg will hung at wait_for_completion(&wait->completion), which will cause hungtask.

 The problem comes as following:
 (padata_do_parallel) | rcu_read_lock_bh(); | err = -EINVAL; | (padata_replace) | pinst->flags |= PADATA_RESET;
 err = -EBUSY | if (pinst->flags & PADATA_RESET) | rcu_read_unlock_bh() | return err

 In order to resolve the problem, we replace the return err -EBUSY with
 -EAGAIN, which means parallel_data is changing, and the caller should call it again.

 v3:
 remove retry and just change the return err.
 v2:
 introduce padata_try_do_parallel() in pcrypt_aead_encrypt and pcrypt_aead_decrypt to solve the hungtask.

Tenable has extracted the preceding description block directly from the Unity Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected kernel package.

See Also

http://www.nessus.org/u?ab88b473

http://www.nessus.org/u?9e900660

https://nvd.nist.gov/vuln/detail/CVE-2023-52813

Plugin Details

Severity: Medium

ID: 274130

File Name: unity_linux_UTSA-2025-990620.nasl

Version: 1.1

Type: local

Published: 11/6/2025

Updated: 11/6/2025

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 4.6

Temporal Score: 3.4

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

CVSS Score Source: CVE-2023-52813

CVSS v3

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/UOS-Server/release, Host/UOS-Server/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 11/6/2025

Vulnerability Publication Date: 12/14/2023

Reference Information

CVE: CVE-2023-52813