UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
Launchpad 2049066 [MIR][jammy] oem-sutton-caspar-meta oem-sutton-caspar-meta
Launchpad 2046446 [MIR][jammy] oem-sutton-cassius-meta oem-sutton-cassius-meta
Launchpad 2046447 [MIR][jammy] oem-sutton-casta-meta oem-sutton-casta-meta
Launchpad 2048830 [MIR][jammy] oem-sutton-castro-meta oem-sutton-castro-meta
Launchpad 2046448 [MIR][jammy] oem-sutton-caymen-meta oem-sutton-caymen-meta
Launchpad 2097831 Support Synaptics fingerprint device with ID 06cb:0107 and 06cb:0108 libfprint libfprint libfprint libfprint
CVE CVE-2024-55549 xsltGetInheritedNsList in libxslt before 1.1.43 has a use-after-free issue related to exclusion of result prefixes. libxslt libxslt libxslt libxslt libxslt libxslt libxslt libxslt
CVE CVE-2024-47532 RestrictedPython is a restricted execution environment for Python to run untrusted code. A user can gain access to protected (and potentially sensibl restrictedpython restrictedpython
CVE CVE-2025-22153 RestrictedPython is a tool that helps to define a subset of the Python language which allows to provide a program input into a trusted environment. V restrictedpython restrictedpython
Launchpad 2103454 3.8.10-0ubuntu1~20.04.16 broke IPv6 zone parsing python3.8 python3.8 python3.8 python3.8
CVE CVE-2024-21543 Versions of the package djoser before 2.3.0 are vulnerable to Authentication Bypass when the authenticate() function fails. This is because the syste djoser djoser djoser djoser djoser djoser
CVE CVE-2022-1231 XSS via Embedded SVG in SVG Diagram Format in GitHub repository plantuml/plantuml prior to 1.2022.4. Stored XSS in the context of the diagram embedde plantuml plantuml plantuml plantuml plantuml plantuml
Launchpad 2028863 Denial of service via gvar table loading freetype freetype freetype freetype
CVE CVE-2025-27363 An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are not vulnerable) when attempting to parse font sub freetype freetype freetype freetype freetype freetype freetype freetype
CVE CVE-2021-47119 In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leak in ext4_fill_super Buffer head references must be release linux linux linux-bluefield linux-xilinx-zynqmp linux-bluefield
CVE CVE-2024-35958 In the Linux kernel, the following vulnerability has been resolved: net: ena: Fix incorrect descriptor free behavior ENA has two types of TX queues linux linux linux-bluefield linux-xilinx-zynqmp linux-bluefield
CVE CVE-2024-26915 In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Reset IH OVERFLOW_CLEAR bit Allows us to detect subsequent IH ring linux linux linux-bluefield linux-xilinx-zynqmp linux-bluefield
CVE CVE-2024-26928 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_debug_files_proc_show() Skip sessions th linux-hwe-5.15 linux-riscv-5.15 linux-aws-5.15 linux-nvidia-tegra linux linux-xilinx-zynqmp linux-riscv-5.15 linux linux-lowlatency-hwe-5.15 linux-hwe-5.15 linux-bluefield linux linux linux-nvidia-tegra linux-riscv-5.15 linux-oracle-5.15 linux-xilinx-zynqmp linux-riscv-5.15 linux-lowlatency-hwe-5.15 linux-hwe-5.15 linux-bluefield linux-aws-5.15 linux-aws-5.15 linux-oracle-5.15 linux-hwe-5.15 linux-aws-5.15 linux linux linux linux linux-lowlatency-hwe-5.15 linux-bluefield linux-xilinx-zynqmp linux-bluefield linux-xilinx-zynqmp
CVE CVE-2024-35864 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_valid_lease_break() Skip sessions tha linux-hwe-5.15 linux-riscv-5.15 linux-aws-5.15 linux-nvidia-tegra linux linux-xilinx-zynqmp linux-riscv-5.15 linux linux-lowlatency-hwe-5.15 linux-hwe-5.15 linux-bluefield linux linux linux-nvidia-tegra linux-riscv-5.15 linux-oracle-5.15 linux-xilinx-zynqmp linux-riscv-5.15 linux-lowlatency-hwe-5.15 linux-hwe-5.15 linux-bluefield linux-aws-5.15 linux-aws-5.15 linux-oracle-5.15 linux-hwe-5.15 linux-aws-5.15 linux linux linux linux linux-lowlatency-hwe-5.15 linux-bluefield linux-xilinx-zynqmp linux-bluefield linux-xilinx-zynqmp
CVE CVE-2024-26837 In the Linux kernel, the following vulnerability has been resolved: net: bridge: switchdev: Skip MDB replays of deferred events on offload Before t linux-hwe-5.15 linux-riscv-5.15 linux-aws-5.15 linux-riscv-5.15 linux-aws-5.15 linux-hwe-5.15 linux linux linux-lowlatency-hwe-5.15 linux-xilinx-zynqmp



About   -   Send Feedback to @ubuntu_updates