UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2025-55304 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A denial-of-service was f exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-27631 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2025-54080 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds read was exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-27596 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-25884 Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. Prior to version 0.28.8, exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2 exiv2
CVE CVE-2026-3888 Local privilege escalation in snapd on Linux allows local attackers to ... snapd snapd snapd snapd snapd snapd snapd snapd snapd
CVE CVE-2026-28421 Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault (SEGV) exist in Vim' vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28419 Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsi vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28418 Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-sty vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28417 Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the `netrw` standard plug vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-25749 Vim is an open source, command line text editor. Prior to version 9.1.2132, a heap buffer overflow vulnerability exists in Vim's tag file resolution vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28422 Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in `build_stl_str_hl()` when rendering a s vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-28420 Vim is an open source, command line text editor. Prior to version 9.2.0076, a heap-based buffer overflow WRITE and an out-of-bounds READ exist in Vim vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2026-26269 Vim is an open source, command line text editor. Prior to 9.1.2148, a stack buffer overflow vulnerability exists in Vim's NetBeans integration when p vim vim vim vim vim vim vim vim vim vim vim vim
Launchpad 2144373 latest update to python3-cryptography breaks ecc secp384r1 support python-cryptography python-cryptography python-cryptography python-cryptography python-cryptography python-cryptography
CVE CVE-2026-3731 A weakness has been identified in libssh up to 0.11.3. The impacted element is the function sftp_extensions_get_name/sftp_extensions_get_data of the libssh libssh libssh libssh libssh libssh
Launchpad 2143920 [SRU] Uncaught SSL errors can crash worker threads python-cheroot python-cheroot
Launchpad 2106484 walinuxagent on Ubuntu 25.04 is missing python3-legacycrypt dependency walinuxagent walinuxagent
Launchpad 2141533 [SRU] Upgrade to v2.15.0.1 on Resolute (26.04) / Q / N / J walinuxagent walinuxagent
Launchpad 2127669 Backport of squid for noble and questing squid squid squid squid


About   -   Send Feedback to @ubuntu_updates