UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
Launchpad 2147086 [SRU] Fix noble image by dropping unused sb build livecd-rootfs
Launchpad 2127666 Backport of open-vm-tools for noble open-vm-tools open-vm-tools
Launchpad 2131292 [SRU] esm_cache.py causes apparmor DENIED audit messages when trying to access devicetree ubuntu-advantage-tools ubuntu-advantage-tools ubuntu-advantage-tools ubuntu-advantage-tools ubuntu-advantage-tools ubuntu-advantage-tools
CVE CVE-2026-33526 Squid is a caching proxy for the Web. Prior to version 7.5, due to heap Use-After-Free, Squid is vulnerable to Denial of Service when handling ICP tr squid squid squid squid squid squid squid squid squid squid squid squid
CVE CVE-2026-33515 Squid is a caching proxy for the Web. Prior to version 7.5, due to improper input validation, Squid is vulnerable to out of bounds read when handling squid squid squid squid squid squid squid squid squid squid squid squid
CVE CVE-2026-32748 Squid is a caching proxy for the Web. Prior to version 7.5, due to premature release of resource during expected lifetime and heap Use-After-Free bug squid squid squid squid squid squid squid squid squid squid squid squid
CVE CVE-2026-31790 Issue summary: Applications using RSASVE key encapsulation to establish a secret encryption key can send contents of an uninitialized memory buffer t openssl openssl openssl openssl openssl openssl
CVE CVE-2026-31789 Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impac openssl openssl openssl openssl openssl openssl
CVE CVE-2026-28390 Issue summary: During processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo a NULL pointer dereference can happen. Impact openssl openssl openssl openssl openssl openssl
CVE CVE-2026-28389 Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo a NULL pointer dereference can happen. Impact sum openssl openssl openssl openssl openssl openssl
CVE CVE-2026-28388 Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CR openssl openssl openssl openssl openssl openssl
CVE CVE-2026-28387 Issue summary: An uncommon configuration of clients performing DANE TLSA-based server authentication, when paired with uncommon server DANE TLSA reco openssl openssl openssl openssl openssl openssl
CVE CVE-2026-2673 Issue summary: An OpenSSL TLS 1.3 server may fail to negotiate the expected preferred key exchange group when its key exchange group configuration in openssl openssl
Launchpad 2137464 crypto/ec/asm/ecp_nistp521-ppc64.pl output regex failure openssl openssl
CVE CVE-2026-5201 A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf gdk-pixbuf
Launchpad 2144593 SRU: io.TextIOWrapper.write: write during flush causes pending_bytes length mismatch leading to crash/corruption python3.12 python3.12
CVE CVE-2026-4292 An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4. ... python-django python-django python-django python-django python-django python-django
CVE CVE-2026-4277 An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4. ... python-django python-django python-django python-django python-django python-django
CVE CVE-2026-3902 An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4. ... python-django python-django python-django python-django python-django python-django
CVE CVE-2026-33034 An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4. ... python-django python-django python-django python-django


About   -   Send Feedback to @ubuntu_updates