UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2026-42960 Possible cache poisoning attack while following delegation unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-42959 Crash during DNSSEC validation of malicious content unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-42944 Heap overflow and crash with multiple nsid, cookie, padding EDNS options unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-42923 Degradation of service with unbounded NSEC3 hash calculations unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-42534 Jostle logic bypass degrades resolution performance unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-41292 Parsing a long list of incoming EDNS options degrades performance unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-40622 "Ghost domain name" variant unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-33278 Possible arbitrary code execution during DNSSEC validation unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
CVE CVE-2026-32792 Packet of death with DNSCrypt (feasibility very low unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound unbound
Launchpad 2151306 [SRU] Add stonking as a known distro series lintian lintian lintian lintian
Launchpad 2143635 Kernel panic (unexpected op) before suspend nvidia-graphics-drivers-595-server nvidia-graphics-drivers-595 nvidia-graphics-drivers-580-server nvidia-graphics-drivers-580 nvidia-graphics-drivers-595-server nvidia-graphics-drivers-595 nvidia-graphics-drivers-580-server nvidia-graphics-drivers-580 nvidia-graphics-drivers-595-server nvidia-graphics-drivers-595 nvidia-graphics-drivers-580-server nvidia-graphics-drivers-580
CVE CVE-2026-42945 NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This vulnerability exists when the rewrite directive is nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx
Launchpad 2152577 CVE-2026-42945: heap-based buffer overflow in ngx_http_rewrite_module (NGINX Rift) nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx nginx
Launchpad 2152202 EXIM-Security-2026-05-01.1 security tracking bug exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4 exim4
CVE CVE-2026-24401 Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. In versions 0.9rc2 and below, avahi-daem avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi
CVE CVE-2026-34933 Avahi is a system which facilitates service discovery on a local network via the mDNS/DNS-SD protocol suite. Prior to version 0.9-rc4, any unprivileg avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi avahi
CVE CVE-2026-5172 A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting a malform dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq
CVE CVE-2026-4893 An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subn dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq
CVE CVE-2026-4892 A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root pri dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq
CVE CVE-2026-4891 A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via a crafted dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq dnsmasq


About   -   Send Feedback to @ubuntu_updates