Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-4565 | Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an arbitrary number of recursive groups, recur | protobuf protobuf protobuf protobuf protobuf protobuf protobuf protobuf protobuf protobuf protobuf protobuf |
| Launchpad | 2114822 | sysdig-dkms FTBFS in Jammy on arm64 | sysdig sysdig |
| Launchpad | 2114883 | [BPO] libreoffice 24.8.7 for jammy/noble | libreoffice libreoffice libreoffice libreoffice |
| CVE | CVE-2025-48386 | Git is a fast, scalable, distributed revision control system with an u ... | git git git git git git git git git git git git |
| CVE | CVE-2025-48385 | Git is a fast, scalable, distributed revision control system with an u ... | git git git git git git git git |
| CVE | CVE-2025-48384 | Git is a fast, scalable, distributed revision control system with an u ... | git git git git git git git git git git git git |
| Launchpad | 2109631 | riscv64 autopkgtest failure due to incomplete hostname masking in sosreport | sos sos |
| Launchpad | 2114840 | [sru] sos upstream 4.9.2 | sos sos |
| Launchpad | 2115187 | Update backports and improve the updater message | yt-dlp yt-dlp |
| Launchpad | 2114843 | [BPO] sbuild 0.88.3ubuntu2.1 from plucky | sbuild sbuild |
| Launchpad | 1797868 | Screen reader doesn't read gnome-initial-setup windows properly | gnome-initial-setup gnome-initial-setup gnome-initial-setup gnome-initial-setup |
| CVE | CVE-2025-4478 | A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation fault. This issue | freerdp3 freerdp3 freerdp3 freerdp3 freerdp3 freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2025-48708 | gs_lib_ctx_stash_sanitized_arg in base/gslibctx.c in Artifex Ghostscript before 10.05.1 lacks argument sanitization for the # case. A created PDF doc | ghostscript ghostscript ghostscript ghostscript ghostscript ghostscript |
| Launchpad | 2114775 | Key validity not computed when key is certified by a trusted \ | gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 gnupg2 |
| Launchpad | 2116061 | [UBUNTU 25.04] lszcrypt output shows no cards because ap module has to be loaded manually | linux-hwe-6.14 linux linux-hwe-6.14 linux-azure-nvidia-6.14 linux-riscv linux-hwe-6.14 linux-hwe-6.14 linux |
| CVE | CVE-2011-10007 | File::Find::Rule through 0.34 for Perl is vulnerable to Arbitrary Code Execution when `grep()` encounters a crafted filename. A file handle is opene | libfile-find-rule-perl libfile-find-rule-perl libfile-find-rule-perl libfile-find-rule-perl libfile-find-rule-perl libfile-find-rule-perl |
| CVE | CVE-2025-5372 | A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the ssh_kdf() function responsible for key derivation | libssh libssh libssh libssh libssh libssh |
| CVE | CVE-2025-5351 | A flaw was found in the key export functionality of libssh. The issue occurs in the internal function responsible for converting cryptographic keys i | libssh libssh libssh libssh |
| CVE | CVE-2025-5318 | A flaw was found in the libssh library. An out-of-bounds read can be triggered in the sftp_handle function due to an incorrect comparison check that | libssh libssh libssh libssh libssh libssh |
| Launchpad | 2114915 | New upstream release 575.64.03 | nvidia-graphics-drivers-575 nvidia-graphics-drivers-575 nvidia-graphics-drivers-575 nvidia-graphics-drivers-575 nvidia-graphics-drivers-575 nvidia-graphics-drivers-575 |
About
-
Send Feedback to @ubuntu_updates
