Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-40780 | Cache poisoning due to weak PRNG | bind9 bind9 bind9 bind9 bind9 bind9 bind9 |
| CVE | CVE-2025-40778 | Cache poisoning attacks with unsolicited RRs | bind9 bind9 bind9 bind9 bind9 bind9 bind9 |
| CVE | CVE-2025-8677 | Resource exhaustion via malformed DNSKEY handling | bind9 bind9 bind9 bind9 bind9 bind9 bind9 |
| Launchpad | 2125535 | makeself archive failing md5sum validation [dd: partial write to slow reader] | rust-coreutils |
| Launchpad | 2127970 | [Ubuntu 25.10 Questing] rust coreutils \ | rust-coreutils |
| Launchpad | 2051348 | AAVMF firmware volume (de)serialization broken | python-uefivars |
| Launchpad | 2117339 | [nvidia] Software rendering in GNOME Shell Wayland sessions | egl-wayland |
| CVE | CVE-2025-48041 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This v | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| CVE | CVE-2025-48040 | Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is ass | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| CVE | CVE-2025-48039 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Ex | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| CVE | CVE-2025-48038 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Ex | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| Launchpad | 2113790 | JSON and XML output broken if path invalid | tree tree tree |
| Launchpad | 2129017 | [SRU] Fix incorrect PCR selection list used in nullboot tests | ubuntu-boot-test python-uefivars ubuntu-boot-test |
| Launchpad | 2113448 | FRR forgets learned MACs on redundant EVPN over VXLAN links | frr frr |
| Launchpad | 2123914 | dynamic-routing-port-name option has no effect | ovn ovn ovn ovn |
| Launchpad | 2126981 | autopkgtest removes iputils-ping | ovn ovn |
| CVE | CVE-2025-61912 | python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, ldap.dn.escape_dn_chars() escapes \x | python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap |
| CVE | CVE-2025-61911 | python-ldap is a lightweight directory access protocol (LDAP) client API for Python. In versions prior to 3.4.5, the sanitization method `ldap.filter | python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap python-ldap |
| Launchpad | 2127135 | NVIDIA k6.8 patches Oct 9, 2025 | linux-nvidia-tegra |
| Launchpad | 2127981 | Enable KVM on noble:linux-nvidia-tegra | linux-nvidia-tegra |
About
-
Send Feedback to @ubuntu_updates
