Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| Launchpad | 2136906 | python3-urllib3 in 24.04 is now incompatible with shipped python3-zstandard | python-urllib3 python-urllib3 python-urllib3 |
| Launchpad | 2114259 | Failed to build against linux-6.16 | v4l2loopback |
| Launchpad | 2136821 | dahdi-dkms FTBS in Noble with the linux-6.17 kernel | dahdi-linux dahdi-linux |
| CVE | CVE-2026-21441 | urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the c | python-urllib3 python-urllib3 python-urllib3 python-urllib3 python-urllib3 python-urllib3 python-urllib3 |
| CVE | CVE-2021-46848 | GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der. | libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 |
| CVE | CVE-2025-13151 | Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a buffer overflow in asn | libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 libtasn1-6 |
| CVE | CVE-2025-13836 | When reading an HTTP response from a server, if no read amount is specified, the default behavior will be to use Content-Length. This allows a malici | python3.13 python3.14 python3.13 python3.13 python3.13 python3.12 python3.12 python3.10 python3.10 python3.13 python3.14 python3.13 python3.13 python3.12 python3.12 python3.10 python3.10 python3.13 |
| CVE | CVE-2025-14180 | In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL | php8.4 php8.4 php8.4 php8.4 php8.3 php8.3 php8.1 php8.1 php8.4 php8.4 php8.4 php8.3 php8.3 php8.1 php8.1 php8.4 |
| CVE | CVE-2025-14178 | In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, a heap buffer overflow occurs | php8.4 php8.4 php8.4 php8.4 php8.3 php8.3 php8.1 php8.1 php8.4 php8.4 php8.4 php8.3 php8.3 php8.1 php8.1 php8.4 |
| CVE | CVE-2025-14177 | In PHP versions:8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1, the getimagesize() function m | php8.4 php8.4 php8.4 php8.4 php8.3 php8.3 php8.4 php8.4 php8.4 php8.3 php8.3 php8.4 |
| CVE | CVE-2024-25269 | libheif <= 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack. | libheif libheif libheif libheif |
| CVE | CVE-2025-68431 | libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEIF that exercises the overlay image item path trigg | libheif libheif libheif libheif libheif libheif libheif libheif libheif libheif libheif libheif |
| Launchpad | 2136097 | [SRU] libreoffice 25.8.4 for questing | libreoffice libreoffice |
| Launchpad | 2128240 | Missing firmware for Intel NPU for Intel Panther Lake | linux-firmware linux-firmware |
| Launchpad | 2136894 | [SRU][R/Q/N] mt7925: Fix invalid reporting of support for EMLSR on MLO link and add support for Indonesia 6GHz | linux-firmware linux-firmware |
| Launchpad | 2134514 | Support audio on qualcomm IQ-X board | linux-firmware |
| Launchpad | 2137522 | [SRU] iwlwifi: add new fw versions to satisfy 6.17 kernel requirement | linux-firmware linux-firmware |
| Launchpad | 2137181 | Update last Intel VPU fw support for Jammy | linux-firmware linux-firmware linux-firmware |
| Launchpad | 2136991 | Upgrade Intel xe GUC to v70.55.3 for Intel Panther Lake | linux-firmware linux-firmware |
| Launchpad | 2136987 | Firmware updates for Intel WIFI core98 software release | linux-firmware linux-firmware |
About
-
Send Feedback to @ubuntu_updates
