UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
CVE CVE-2026-9669 bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and retried with the same dec python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-8328 The ftpcp() function in Lib/ftplib.py was not updated when CVE-2021-4189 was fixed. While makepasv() was patched to replace server-supplied PASV ho python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-7774 tarfile.data_filter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive me python3.14 python3.14 python3.12 python3.12 python3.14 python3.14 python3.12 python3.12
CVE CVE-2026-6100 Use-after-free (UAF) was possible in the `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile` when a memory allocation fails with a `M python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-6019 http.cookies.Morsel.js_output() returns an inline <script> snippet and only escapes " for JavaScript string context. It does not neutralize the HTML python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-5713 The "profiling.sampling" module (Python 3.15+) and "asyncio introspection capabilities" (3.14+, "python -m asyncio ps" and "python -m asyncio pstree" python3.14 python3.14 python3.14 python3.14
CVE CVE-2026-4786 Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser. python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-4519 The webbrowser.open() API would accept leading dashes in the URL which could be handled as command line options for certain web browsers. New behav python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-3276 unicodedata.normalize() can take excessive CPU time when processing specially crafted Unicode input containing long runs of combining characters with python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2026-1502 CR/LF bytes were not rejected by HTTP client proxy tunnel headers or host. python3.14 python3.14 python3.12 python3.12 python3.10 python3.10 python3.14 python3.14 python3.12 python3.12 python3.10 python3.10
CVE CVE-2025-45582 GNU Tar through 1.35 allows file overwrite via directory traversal in crafted TAR archives, with a certain two-step process. First, the victim must e tar tar tar tar tar tar tar tar tar tar tar tar
CVE CVE-2026-42256 Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. From versions 0.4.0 to before 0.4.24, 0.5.0 to before 0.5. ruby3.3 ruby3.3
Launchpad 2150830 Missing ath9k_htc firmware linux-firmware-qualcomm-wireless
CVE CVE-2026-42257 Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, several Net:: ruby3.2 ruby3.0 ruby3.2 ruby3.0 ruby3.3 ruby3.3
CVE CVE-2026-42246 Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Prior to versions 0.3.10, 0.4.24, 0.5.14, and 0.6.4, a man ruby3.2 ruby3.0 ruby3.2 ruby3.0 ruby3.3 ruby3.3
Launchpad 2159053 fix for CVE-2026-12505 introduced regression with kerberos mounts cifs-utils cifs-utils cifs-utils cifs-utils cifs-utils cifs-utils cifs-utils cifs-utils
Launchpad 2157975 [SRU] Disable tmp.mount when RAM \u003c8GB ubuntu-raspi-settings
Launchpad 2157789 [SRU] Dracut silently produces truncated initramfs with constrained RAM ubuntu-raspi-settings
Launchpad 2148643 [SRU] connectivity-check.ubuntu.com URL change? network-manager network-manager network-manager network-manager
Launchpad 2154708 [SRU] RISC-V: Missing support for Zicbop extension in KVM guest qemu-hwe qemu qemu-hwe qemu



About   -   Send Feedback to @ubuntu_updates