Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2026-44742 | Postorius through 1.3.13 does not escape HTML in the message subject when rendering it in the Held messages pop-up, as exploited in the wild in May 2 | postorius postorius postorius postorius |
| CVE | CVE-2026-46470 | An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_audio_caps function d | gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 |
| CVE | CVE-2026-46469 | An issue was discovered in GStreamer gst-plugins-good before 1.28.2. When parsing MP4 audio tracks, the isomp4 plugin's qtdemux_parse_trak function d | gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 gst-plugins-good1.0 |
| CVE | CVE-2026-47784 | In memcached before 1.6.42, password data for SASL password database authentication has a timing side channel because memcmp is used by sasl_server_u | memcached memcached memcached memcached memcached memcached memcached memcached |
| CVE | CVE-2026-47783 | In memcached before 1.6.42, username data for SASL password database authentication has a timing side channel because a loop exits as soon as a valid | memcached memcached memcached memcached memcached memcached memcached memcached |
| CVE | CVE-2026-4778 | A weakness has been identified in SourceCodester Sales and Inventory System 1.0. This vulnerability affects unknown code of the file update_category. | memcached memcached memcached memcached memcached memcached memcached memcached |
| CVE | CVE-2026-42046 | libcaca is a colour ASCII art library. In 0.99.beta20 and earlier, an integer overflow vulnerability in libcaca's canvas import functionality allows | libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca libcaca |
| CVE | CVE-2026-41990 | Libgcrypt before 1.12.2 mishandles Dilithium signing. Writes to a static array lack a bounds check but do not use attacker-controlled data. | libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 |
| CVE | CVE-2026-41989 | Libgcrypt before 1.12.2 sometimes allows a heap-based buffer overflow and denial of service via crafted ECDH ciphertext to gcry_pk_decrypt. | libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 libgcrypt20 |
| Launchpad | 2152282 | [SRU] Ubuntu 26.04 / Settings crashes when accessing \ | malcontent malcontent |
| Launchpad | 2104322 | cinder-manager quota sync is not working | cinder |
| Launchpad | 2152807 | [SRU] Segmentation fault on suspend/resume cycle for multiple monitors | budgie-desktop-services |
| Launchpad | 2077969 | Settings \u003e Ubuntu Desktop \u003e \ | gnome-session gnome-session |
| CVE | CVE-2026-7598 | A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauth_password of the file src/userauth.c | libssh2 libssh2 libssh2 libssh2 libssh2 libssh2 |
| CVE | CVE-2026-6507 | A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY (Bootstrap | dnsmasq dnsmasq dnsmasq dnsmasq |
| CVE | CVE-2026-4480 | Unauthenticated Remote Code Execution using print command | samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba |
| CVE | CVE-2026-4408 | Remote Code Execution in SAMR when check password script contains %u substitution placeholder | samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba |
| CVE | CVE-2026-3238 | unauthenticated udp packet crashes AD DC nbt server | samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba |
| CVE | CVE-2026-3012 | group policy certificate enrollment uses http:// without validation | samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba |
| CVE | CVE-2026-2340 | vfs_worm does not block directory modification | samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba samba |
About
-
Send Feedback to @ubuntu_updates
