UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2026-44742 Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2 postorius postorius postorius postorius
CVE CVE-2026-46470 An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_audio_caps function d gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0
CVE CVE-2026-46469 An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_parse_trak function d gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0
CVE CVE-2026-47784 In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_u memcached memcached memcached memcached memcached memcached memcached memcached
CVE CVE-2026-47783 In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid memcached memcached memcached memcached memcached memcached memcached memcached
CVE CVE-2026-4778 A weakness has been identified in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file update_category. memcached memcached memcached memcached memcached memcached memcached memcached
CVE CVE-2026-42046 libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an integer overflow vulnerability in libcaca's canvas import functionality allows libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca
CVE CVE-2026-41990 Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data. libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20
CVE CVE-2026-41989 Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt. libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20
Launchpad 2152282 [SRU] Ubuntu 26.04 / Settings crashes when accessing \ malcontent malcontent
Launchpad 2104322 cinder-manager quota sync is not working cinder
Launchpad 2152807 [SRU] Segmentation fault on suspend/resume cycle for multiple monitors budgie-desktop-services
Launchpad 2077969 Settings \u003e Ubuntu Desktop \u003e \ gnome-session gnome-session
CVE CVE-2026-7598 A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauth_password of the file src/userauth.c libssh2 libssh2 libssh2 libssh2 libssh2 libssh2
CVE CVE-2026-6507 A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap dnsmasq dnsmasq dnsmasq dnsmasq
CVE CVE-2026-4480 Unauthenticated Remote Code Execution using print command samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba
CVE CVE-2026-4408 Remote Code Execution in SAMR when check password script contains %u substitution placeholder samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba
CVE CVE-2026-3238 unauthenticated udp packet crashes AD DC nbt server samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba
CVE CVE-2026-3012 group policy certificate enrollment uses http:// without validation samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba
CVE CVE-2026-2340 vfs_worm does not block directory modification samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba



About   -   Send Feedback to @ubuntu_updates