Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2026-22858 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP's Base64 decoding pa | freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2026-22857 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func because the IRP is | freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2026-22856 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking allows a heap use‑ | freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2026-22855 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcard SetAttrib path wh | freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2026-22854 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlle | freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2026-22853 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bounds checking on the o | freerdp3 |
| CVE | CVE-2026-22852 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in | freerdp3 freerdp3 freerdp3 |
| CVE | CVE-2026-22851 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition between the RDPGFX dynamic virtual channel thread | freerdp3 freerdp3 freerdp3 |
| Launchpad | 2141493 | amd64v3 builds do not include package contents in logs and need help to find changes file | sbuild sbuild sbuild sbuild |
| Launchpad | 2141785 | [SRU] openjdk-25-jre-headless in jammy depends on openjdk-11 | ca-certificates-java |
| CVE | CVE-2026-27205 | Flask is a web server gateway interface (WSGI) web application framework. In versions 3.1.2 and below, when the session object is accessed, Flask sho | flask flask flask flask flask flask flask flask |
| CVE | CVE-2025-55304 | Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A denial-of-service was f | exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 |
| CVE | CVE-2026-27631 | Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, | exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 |
| CVE | CVE-2025-54080 | Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was | exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 |
| CVE | CVE-2026-27596 | Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, | exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 |
| CVE | CVE-2026-25884 | Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, | exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 |
| CVE | CVE-2026-3888 | Local privilege escalation in snapd on Linux allows local attackers to ... | snapd snapd snapd snapd snapd snapd snapd snapd snapd |
| CVE | CVE-2026-28421 | Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault (SEGV) exist in Vim' | vim vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28419 | Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsi | vim vim vim vim vim vim vim vim vim vim vim vim |
| CVE | CVE-2026-28418 | Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-sty | vim vim vim vim vim vim vim vim vim vim vim vim |
About
-
Send Feedback to @ubuntu_updates
