tag:www.ubuntuupdates.org,2010-02-06:/bugsUbuntu Bugs & Vulnerabilities2024-03-18T20:36:04Ztag:www.ubuntuupdates.org,2010-02-06:Bug/859312024-03-18T20:36:04Z2024-03-18T20:36:04ZLaunchpad: Migrate oem-6.1 to oem-6.5<a href='https://bugs.launchpad.net/bugs/2048077'>2048077</a><br/>Launchpad<br/>Migrate oem-6.1 to oem-6.5<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859302024-03-18T18:36:09Z2024-03-18T18:36:09ZCVE: Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down<a href='https://security-tracker.debian.org/tracker/CVE-2024-22667'>CVE-2024-22667</a><br/>CVE<br/>Vim before 9.0.2142 has a stack-based buffer overflow because did_set_langmap in map.c calls sprintf to write to the error buffer that is passed down<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859292024-03-18T15:36:04Z2024-03-18T15:36:04ZCVE: A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.<a href='https://security-tracker.debian.org/tracker/CVE-2022-3715'>CVE-2022-3715</a><br/>CVE<br/>A flaw was found in the bash package, where a heap-buffer overflow can occur in valid parameter_transform. This issue may lead to memory problems.<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859282024-03-18T05:36:06Z2024-03-18T05:36:06ZCVE: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Sup<a href='https://security-tracker.debian.org/tracker/CVE-2024-20926'>CVE-2024-20926</a><br/>CVE<br/>Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Scripting). Sup<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859272024-03-15T22:36:08Z2024-03-15T22:36:08ZLaunchpad: [SRU] New upstream microrelease .NET 6.0.28 and SDK 6.0.128<a href='https://bugs.launchpad.net/bugs/2057699'>2057699</a><br/>Launchpad<br/>[SRU] New upstream microrelease .NET 6.0.28 and SDK 6.0.128<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859262024-03-15T15:36:11Z2024-03-15T15:36:11ZLaunchpad: [SRU] Hexchat crashes whenever I click on a specific link in a channel<a href='https://bugs.launchpad.net/bugs/2029314'>2029314</a><br/>Launchpad<br/>[SRU] Hexchat crashes whenever I click on a specific link in a channel<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859252024-03-15T15:36:09Z2024-03-15T15:36:09ZLaunchpad: Lenovo XT99 BT headset can't work in HFP profile<a href='https://bugs.launchpad.net/bugs/2051895'>2051895</a><br/>Launchpad<br/>Lenovo XT99 BT headset can't work in HFP profile<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859242024-03-14T20:36:14Z2024-03-14T20:36:14ZLaunchpad: [jammy/mantic] ftbfs due to build-time incompatibility with updated openvswitch<a href='https://bugs.launchpad.net/bugs/2056769'>2056769</a><br/>Launchpad<br/>[jammy/mantic] ftbfs due to build-time incompatibility with updated openvswitch<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859232024-03-14T14:37:52Z2024-03-14T14:37:52ZCVE: In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.<a href='https://security-tracker.debian.org/tracker/CVE-2019-18604'>CVE-2019-18604</a><br/>CVE<br/>In axohelp.c before 1.3 in axohelp in axodraw2 before 2.1.1b, as distributed in TeXLive and other collections, sprintf is mishandled.<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859222024-03-14T14:37:51Z2024-03-14T14:37:51ZCVE: LuaTeX before 1.17.0 allows a document (compiled with the default settings) to make arbitrary network requests. This occurs because full access to th<a href='https://security-tracker.debian.org/tracker/CVE-2023-32668'>CVE-2023-32668</a><br/>CVE<br/>LuaTeX before 1.17.0 allows a document (compiled with the default settings) to make arbitrary network requests. This occurs because full access to th<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859212024-03-14T14:37:51Z2024-03-14T14:37:51ZCVE: texlive-bin commit c515e was discovered to contain heap buffer overflow via the function ttfLoadHDMX:ttfdump. This vulnerability allows attackers to <a href='https://security-tracker.debian.org/tracker/CVE-2024-25262'>CVE-2024-25262</a><br/>CVE<br/>texlive-bin commit c515e was discovered to contain heap buffer overflow via the function ttfLoadHDMX:ttfdump. This vulnerability allows attackers to <br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859202024-03-14T14:37:51Z2024-03-14T14:37:51ZLaunchpad: There is a heap buffer overflow in texlive-bin <a href='https://bugs.launchpad.net/bugs/2047912'>2047912</a><br/>Launchpad<br/>There is a heap buffer overflow in texlive-bin <br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859192024-03-14T12:36:05Z2024-03-14T12:36:05ZCVE: libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCrea<a href='https://security-tracker.debian.org/tracker/CVE-2024-28757'>CVE-2024-28757</a><br/>CVE<br/>libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external parsers (created via XML_ExternalEntityParserCrea<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859182024-03-14T12:36:05Z2024-03-14T12:36:05ZCVE: libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for w<a href='https://security-tracker.debian.org/tracker/CVE-2023-52425'>CVE-2023-52425</a><br/>CVE<br/>libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsings are required in the case of a large token for w<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859172024-03-13T16:36:06Z2024-03-13T16:36:06ZLaunchpad: Mutter rebuilds on jammy fail test: mutter:cogl+cogl/conform / framebuffer-get-bits (due to Mesa \u003e= 23.1.1)<a href='https://bugs.launchpad.net/bugs/2055519'>2055519</a><br/>Launchpad<br/>Mutter rebuilds on jammy fail test: mutter:cogl+cogl/conform / framebuffer-get-bits (due to Mesa \u003e= 23.1.1)<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859162024-03-13T16:36:05Z2024-03-13T16:36:05ZLaunchpad: Mutter (sometimes) fails to build with [fatal error: meta/meta-enum-types.h: No such file or directory]<a href='https://bugs.launchpad.net/bugs/2055530'>2055530</a><br/>Launchpad<br/>Mutter (sometimes) fails to build with [fatal error: meta/meta-enum-types.h: No such file or directory]<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859152024-03-12T21:36:07Z2024-03-12T21:36:07ZLaunchpad: [BPO] libreoffice 7.6.5 for jammy<a href='https://bugs.launchpad.net/bugs/2056732'>2056732</a><br/>Launchpad<br/>[BPO] libreoffice 7.6.5 for jammy<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859142024-03-12T20:36:08Z2024-03-12T20:36:08ZCVE: .NET and Visual Studio Denial of Service Vulnerability<a href='https://security-tracker.debian.org/tracker/CVE-2024-21392'>CVE-2024-21392</a><br/>CVE<br/>.NET and Visual Studio Denial of Service Vulnerability<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859132024-03-12T18:36:08Z2024-03-12T18:36:08ZLaunchpad: [SRU] 2.61.3<a href='https://bugs.launchpad.net/bugs/2039017'>2039017</a><br/>Launchpad<br/>[SRU] 2.61.3<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetamtag:www.ubuntuupdates.org,2010-02-06:Bug/859122024-03-12T17:36:06Z2024-03-12T17:36:06ZCVE: The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal clas<a href='https://security-tracker.debian.org/tracker/CVE-2022-25647'>CVE-2022-25647</a><br/>CVE<br/>The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal clas<br/>Full list of bugs: <a href="/bugs">https://www.ubuntuupdates.org/bugs</a>Bikethetam