Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-59731 | When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to | ffmpeg ffmpeg |
| CVE | CVE-2025-59728 | When calculating the content path in handling of MPEG-DASH manifests, there's an out-of-bounds NUL-byte write one byte past the end of the buffer.Whe | ffmpeg ffmpeg |
| CVE | CVE-2026-22796 | Issue summary: A type confusion vulnerability exists in the signature ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2026-22795 | Issue summary: An invalid or NULL pointer dereference can happen in an ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-69421 | Issue summary: Processing a malformed PKCS#12 file can trigger a NULL ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-69420 | Issue summary: A type confusion vulnerability exists in the TimeStamp ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-69419 | Issue summary: Calling PKCS12_get_friendlyname() function on a malicio ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-69418 | Issue summary: When using the low-level OCB API directly with AES-NI o ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-68160 | Issue summary: Writing large, newline-free data into a BIO chain using ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-66199 | Issue summary: A TLS 1.3 connection using certificate compression can ... | openssl openssl |
| CVE | CVE-2025-15469 | Issue summary: The 'openssl dgst' command-line tool silently truncates ... | openssl openssl |
| CVE | CVE-2025-15468 | Issue summary: If an application using the SSL_CIPHER_find() function ... | openssl openssl |
| CVE | CVE-2025-15467 | Issue summary: Parsing CMS AuthEnvelopedData message with maliciously ... | openssl openssl openssl openssl openssl openssl |
| CVE | CVE-2025-11187 | Issue summary: PBMAC1 parameters in PKCS#12 files are missing validati ... | openssl openssl |
| CVE | CVE-2026-22251 | wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.0, wlc supported providing unscoped API keys in the setting. This practi | wlc wlc |
| CVE | CVE-2026-22250 | wlc is a Weblate command-line client using Weblate's REST API. Prior to 1.17.0, the SSL verification would be skipped for some crafted URLs. This vul | wlc wlc |
| CVE | CVE-2026-23949 | jaraco.context, an open-source software package that provides some useful decorators and context managers, has a Zip Slip path traversal vulnerabilit | jaraco.context jaraco.context |
| Launchpad | 2138931 | [SRU] New upstream microrelease .NET 9.0.113/9.0.12 | dotnet9 |
| CVE | CVE-2025-7783 | Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution (HPP). This vulnerability is associated with program f | node-form-data node-form-data |
| CVE | CVE-2023-24626 | socket.c in GNU Screen through 4.9.0, when installed setuid or setgid (the default on platforms such as Arch Linux and FreeBSD), allows local users t | screen screen |
About
-
Send Feedback to @ubuntu_updates
