Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2026-28421 | Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault (SEGV) exist in Vim' | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28419 | Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsi | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28418 | Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-sty | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28417 | Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the `netrw` standard plug | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-25749 | Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28422 | Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in `build_stl_str_hl()` when rendering a s | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28420 | Vim is an open source, command line text editor. Prior to version 9.2.0076, a heap-based buffer overflow WRITE and an out-of-bounds READ exist in Vim | vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-26269 | Vim is an open source, command line text editor. Prior to 9.1.2148, a stack buffer overflow vulnerability exists in Vim's NetBeans integration when p | vim vim vim vim vim vim vim vim vim vim vim |
| Launchpad | 2144373 | latest update to python3-cryptography breaks ecc secp384r1 support | python-cryptography python-cryptography python-cryptography python-cryptography python-cryptography python-cryptography |
| CVE | CVE-2026-3731 | A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftp_extensions_get_name/sftp_extensions_get_data of the | libssh libssh libssh libssh libssh libssh |
| Launchpad | 2143920 | [SRU] Uncaught SSL errors can crash worker threads | python-cheroot python-cheroot |
| Launchpad | 2106484 | walinuxagent on Ubuntu 25.04 is missing python3-legacycrypt dependency | walinuxagent walinuxagent |
| Launchpad | 2141533 | [SRU] Upgrade to v2.15.0.1 on Resolute (26.04) / Q / N / J | walinuxagent walinuxagent |
| Launchpad | 2127669 | Backport of squid for noble and questing | squid squid squid squid |
| Launchpad | 2142854 | [BPO] libreoffice 25.8.5 for jammy/noble | libreoffice libreoffice libreoffice libreoffice |
| Launchpad | 2143997 | [BPO] sso-mib/0.7.0+ds-1 from resolute | sso-mib |
| Launchpad | 2143994 | [BPO] linux-entra-sso/1.8.0-1 from resolute | linux-entra-sso |
| Launchpad | 2143480 | Questing: Failed to query NVIDIA devices | linux-riscv linux linux-riscv-6.17 linux-hwe-6.17 linux-azure-nvidia-6.17 linux-hwe-6.17 linux linux-riscv linux-riscv linux linux-hwe-6.17 |
| Launchpad | 2143042 | exec_mailer: Set group as well as uid when running the mailer | sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo |
| CVE | CVE-2025-61985 | ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used. | openssh openssh openssh openssh openssh openssh openssh openssh openssh openssh openssh openssh |
About
-
Send Feedback to @ubuntu_updates
