UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2026-22858 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP's Base64 decoding pa freerdp3 freerdp3 freerdp3
CVE CVE-2026-22857 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is freerdp3 freerdp3 freerdp3
CVE CVE-2026-22856 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking allows a heap use‑ freerdp3 freerdp3 freerdp3
CVE CVE-2026-22855 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path wh freerdp3 freerdp3 freerdp3
CVE CVE-2026-22854 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlle freerdp3 freerdp3 freerdp3
CVE CVE-2026-22853 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the o freerdp3
CVE CVE-2026-22852 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in freerdp3 freerdp3 freerdp3
CVE CVE-2026-22851 FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition between the RDPGFX dynamic virtual channel thread freerdp3 freerdp3 freerdp3
Launchpad 2141493 amd64v3 builds do not include package contents in logs and need help to find changes file sbuild sbuild sbuild sbuild
Launchpad 2141785 [SRU] openjdk-25-jre-headless in jammy depends on openjdk-11 ca-certificates-java
CVE CVE-2026-27205 Flask is a web server gateway interface (WSGI) web application framework. In versions 3.1.2 and below, when the session object is accessed, Flask sho flask flask flask flask flask flask flask flask
CVE CVE-2025-55304 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A denial-of-service was f exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-27631 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2025-54080 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-27596 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-25884 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-3888 Local privilege escalation in snapd on Linux allows local attackers to ... snapd snapd snapd snapd snapd snapd snapd snapd snapd
CVE CVE-2026-28421 Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault (SEGV) exist in Vim' vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28419 Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsi vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28418 Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-sty vim vim vim vim vim vim vim vim vim vim vim vim



About   -   Send Feedback to @ubuntu_updates