UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
Debian 557676 Typo in package description: "This packages" plib-doc
Debian 778971 plib-doc: please make the build reproducible plib-doc
Launchpad 2157593 Update firmware for linux-hwe-7.0 linux-firmware
Launchpad 2158073 HP ISH firmware missing for Intel Lunar Lake and Panther Lake systems linux-firmware-intel-misc linux-firmware
Launchpad 2158809 [SRU][S/R/N] mt7925: add support for the India, Tunisia and Paraguay country codes linux-firmware-mediatek linux-firmware
Launchpad 2158956 [SRU] Add firmware for Cirrus Amps for some Lenovo laptops (17aa235c 17aa235d) linux-firmware-misc linux-firmware
CVE CVE-2026-6045 LibreOffice can import EMF+ graphics, which may be embedded in documents. A heap buffer overflow existed when importing an EMF+ gradient brush. The n libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice
CVE CVE-2026-6040 A heap use-after-free existed when importing the blank-width characters of an ODF number format. A position value read from the document was not chec libreoffice libreoffice libreoffice libreoffice
CVE CVE-2026-6039 LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a DXF polyline. The point count libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice
CVE CVE-2026-8358 LibreOffice Calc can import tracked changes from a spreadsheet document. A heap buffer overflow existed when a document reused the same change identi libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice
CVE CVE-2026-8357 LibreOffice Calc compiles cell formulas when opening a spreadsheet. A heap buffer overflow existed when compiling a very long formula made up of many libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice
CVE CVE-2026-8356 LibreOffice can import presentations in the legacy binary PPT format. A stack buffer overflow existed when importing a colour-replacement record. Two libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice libreoffice
CVE CVE-2026-14330 Multiple unbounded alloca() calls in the PulseAudio protocol server. pipewire pipewire pipewire pipewire pipewire pipewire pipewire pipewire pipewire pipewire pipewire pipewire
CVE CVE-2026-14324 RAOP module accepts unbounded Content-Length values and does not check the pw_array_add() return. pipewire pipewire pipewire pipewire pipewire pipewire pipewire pipewire
CVE CVE-2026-40386 In libexif through 0.6.25, an integer underflow in size checking for Fuji and Olympus MakerNote decoding could be used by attackers to crash or leak libexif libexif libexif libexif libexif libexif
CVE CVE-2026-40385 In libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes or inform libexif libexif libexif libexif libexif libexif
CVE CVE-2026-32775 libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exif_mnote_data_get_value function gets passed in a 0 size, the passed in-buffer wou libexif libexif libexif libexif libexif libexif
CVE CVE-2026-58050 libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation num_attr libssh2 libssh2 libssh2 libssh2
CVE CVE-2026-58051 libssh2 through 1.11.1 grows its publickey list with SSH2_REALLOC but does not zero-initialize new entries before parsing populates them, so a parse libssh2 libssh2 libssh2 libssh2
CVE CVE-2026-5805 A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of the file /users/contact_us.p libssh2 libssh2 libssh2 libssh2



About   -   Send Feedback to @ubuntu_updates