Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2026-39324 | Rack::Session is a session management implementation for Rack. From 2.0.0 to before 2.1.2, Rack::Session::Cookie incorrectly handles decryption failu | ruby-rack-session |
| Launchpad | 2148797 | Lock Screen Time Not Translated to Chinese in Ubuntu Kylin 26.04 | libkysdk-system |
| Launchpad | 2148802 | Incorrect Version Information Displayed in \ | libkysdk-system |
| Launchpad | 2148890 | Unable to satisfy dependencies on peony-extensions | peony-extensions |
| Launchpad | 2148810 | File conflict prevents ubuntukylin-desktop from being installed | ukui-desktop-environment |
| Launchpad | 2148817 | Window manager settings in ukui-session-manager do not take effect when setting via gsettings | ukui-session-manager |
| Launchpad | 2148897 | libvirt-glib 5.0.0-3 FTBFS on Resolute | libvirt-glib |
| Launchpad | 2148819 | java-gnome: FTBFS in Resolute | java-gnome |
| Launchpad | 2148673 | Algotek plugin probes USB hardware it shouldn't | fwupd fwupd fwupd fwupd |
| Launchpad | 2148688 | qt6-ukui-platformtheme migrate failed due unsatisfiable dependency | qt6-ukui-platformtheme |
| Launchpad | 2148689 | QML theme issues cause incorrect font and background colors in some UKUI components | qt6-ukui-platformtheme |
| Launchpad | 2141514 | [needs-packaging] rocwmma - in ubuntu | rocwmma |
| Debian | 1118270 | upgrade from trixie has unhandled directory-turned-symlink issue | golang-gopkg-yaml.v3 |
| Launchpad | 2132257 | Mass rebuild for Ubuntu 26.04 | elpa golang-github-golang-jwt-jwt powerman |
| Debian | 1131177 | qtmir: please drop the unused "quilt" build-dependency, this is a regular '3.0 (quilt)' package | qtmir qtmir |
| Launchpad | 2148738 | Date format in Digital Clock applet is set to ISO which doesn't respect the date format of the locale | kubuntu-settings kubuntu-settings |
| Debian | 1134177 | squid-deb-proxy: Consider changing the default port | squid-deb-proxy squid-deb-proxy |
| CVE | CVE-2026-23745 | node-tar is a Tar for Node.js. The node-tar library (<= 7.5.2) fails to sanitize the linkpath of Link (hardlink) and SymbolicLink entries when preser | node-tar node-tar |
| CVE | CVE-2026-31802 | node-tar is a full-featured Tar for Node.js. Prior to version 7.5.11, tar (npm) can be tricked into creating a symlink that points outside the extrac | node-tar node-tar |
| CVE | CVE-2026-24842 | node-tar,a Tar for Node.js, contains a vulnerability in versions prior to 7.5.7 where the security check for hardlink entries uses different path res | node-tar node-tar |
About
-
Send Feedback to @ubuntu_updates