UbuntuUpdates.org

Latest Changelogs for all releases

All releases Bionic Focal Jammy Noble Plucky Questing
Include all PPAs Exclude daily builds PPAs Exclude all PPAs
Include levels: securityupdatesbackportsproposedbase

Note: Only updates for "head" packages where the changelog is available are shown on this page (view all).

firefox Jan 18th 11:08
This package belongs to a PPA: Mozilla ESR
Release: noble Repo: main Level: base New version: 147.0.1+build1-0ubuntu0.24.04.1~mt1
Packages in group:  firefox-dbg firefox-dev firefox-geckodriver firefox-locale-af firefox-locale-an firefox-locale-ar firefox-locale-as firefox-locale-ast firefox-locale-az firefox-locale-be firefox-locale-bg (... see all)

 firefox (147.0.1+build1-0ubuntu0.24.04.1~mt1) noble; urgency=medium
 .
   * New upstream release (147.0.1+build1)
 .


nvidia-graphics-drivers-535-server Jan 17th 02:55
Release: plucky Repo: restricted Level: proposed New version: 535.288.01-0ubuntu0.25.04.2
Packages in group:  libnvidia-cfg1-535-server libnvidia-common-535-server libnvidia-compute-535-server libnvidia-decode-535-server libnvidia-encode-535-server libnvidia-extra-535-server libnvidia-fbc1-535-server libnvidia-gl-535-server nvidia-compute-utils-535-server nvidia-dkms-535-server nvidia-dkms-535-server-open (... see all)

  nvidia-graphics-drivers-535-server (535.288.01-0ubuntu0.25.04.2) plucky; urgency=medium

  * Remove nvidia-nv-Convert-symbol-namespace-to-string-literal.patch

nvidia-graphics-drivers-535-server Jan 17th 02:55
Release: noble Repo: restricted Level: proposed New version: 535.288.01-0ubuntu0.24.04.2
Packages in group:  libnvidia-cfg1-535-server libnvidia-common-535-server libnvidia-compute-535-server libnvidia-decode-535-server libnvidia-encode-535-server libnvidia-extra-535-server libnvidia-fbc1-535-server libnvidia-gl-535-server nvidia-compute-utils-535-server nvidia-dkms-535-server nvidia-dkms-535-server-open (... see all)

  nvidia-graphics-drivers-535-server (535.288.01-0ubuntu0.24.04.2) noble; urgency=medium

  * Remove nvidia-nv-Convert-symbol-namespace-to-string-literal.patch

firefox Jan 16th 21:23
This package belongs to a PPA: Mozilla ESR
Release: questing Repo: main Level: base New version: 147.0.1+build1-0ubuntu0.25.10.1~mt1
Packages in group:  firefox-dbg firefox-dev firefox-geckodriver firefox-locale-af firefox-locale-an firefox-locale-ar firefox-locale-as firefox-locale-ast firefox-locale-az firefox-locale-be firefox-locale-bg (... see all)

 firefox (147.0.1+build1-0ubuntu0.25.10.1~mt1) questing; urgency=medium
 .
   * New upstream release (147.0.1+build1)
 .


firefox Jan 16th 21:23
This package belongs to a PPA: Mozilla ESR
Release: jammy Repo: main Level: base New version: 147.0.1+build1-0ubuntu0.22.04.1~mt1
Packages in group:  firefox-dbg firefox-dev firefox-geckodriver firefox-locale-af firefox-locale-an firefox-locale-ar firefox-locale-as firefox-locale-ast firefox-locale-az firefox-locale-be firefox-locale-bg (... see all)

 firefox (147.0.1+build1-0ubuntu0.22.04.1~mt1) jammy; urgency=medium
 .
   * New upstream release (147.0.1+build1)
 .


firefox Jan 16th 21:23
This package belongs to a PPA: Mozilla ESR
Release: focal Repo: main Level: base New version: 147.0.1+build1-0ubuntu0.20.04.1~mt1
Packages in group:  firefox-dbg firefox-dev firefox-geckodriver firefox-locale-af firefox-locale-an firefox-locale-ar firefox-locale-as firefox-locale-ast firefox-locale-az firefox-locale-be firefox-locale-bg (... see all)

 firefox (147.0.1+build1-0ubuntu0.20.04.1~mt1) focal; urgency=medium
 .
   * New upstream release (147.0.1+build1)
 .


rustc-1.89 Jan 16th 20:20
Release: noble Repo: universe Level: updates New version: 1.89.0+dfsg~24.04-0ubuntu0.24.04.1
Packages in group:  cargo-1.89 cargo-1.89-doc libstd-rust-1.89 libstd-rust-1.89-dev rust-1.89-all rust-1.89-clippy rust-1.89-doc rust-1.89-gdb rust-1.89-lldb rust-1.89-src rustfmt-1.89 (... see all)

  rustc-1.89 (1.89.0+dfsg~24.04-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Backport Rust 1.89 to Noble Numbat (LP: #2138316)
    - Downgrade libgit2 to 1.7.2
    - Replace system LLVM dependencies with vendored version
    - Vendor dh-cargo-vendored-sources to use specific cargo version

 -- Brent Kerby <email address hidden> Thu, 04 Dec 2025 12:48:40 -0700
2138316 Backport rustc-1.89 to Noble

ruby-rack Jan 16th 18:13
Release: noble Repo: main Level: security New version: 2.2.7-1ubuntu0.5
Packages in group: 

  ruby-rack (2.2.7-1ubuntu0.5) noble-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - d/p/CVE-2025-61770-and-CVE-2025-61772.patch: Enforce a size limit for
      the preamble and multipart mime part header
    - d/p/CVE-2025-61771.patch: Limit amount of retained data when parsing
      multipart requests
    - CVE-2025-61770
    - CVE-2025-61772
    - CVE-2025-61771

  * SECURITY UPDATE: Information discloure using proxy bypass
    - debian/patches/CVE-2025-61780.patch: Fix handling of proxy headers
      (`HTTP_X_SENDFILE_TYPE` and `HTTP_X_ACCEL_MAPPING`) in Rack::Sendfile
    - CVE-2025-61780

  * SECURITY UPDATE: Denial of service through memory exhaustion
    - debian/patches/CVE-2025-61919.patch: Enforce form parameter limit
      using `query_parser.bytesize_limit` preventing unbounded read of
      `application/x-www-form-urlencoded` bodies
    - CVE-2025-61919

 -- Shishir Subedi <email address hidden> Mon, 01 Dec 2025 13:38:28 +0545
CVE-2025-61770 Rack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, `Rack::Multipart::Parser` buffers the entire multipart p
CVE-2025-61772 Rack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, `Rack::Multipart::Parser` can accumulate unbounded data
CVE-2025-61771 Rack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, ``Rack::Multipart::Parser` stores non-file form fields (
CVE-2025-61780 Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, a possible information disclosure vulnerability existed in
CVE-2025-61919 Rack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, `Rack::Request#POST` reads the entire request body into mem

tzdata Jan 16th 17:08
Release: questing Repo: universe Level: proposed New version: 2025b-3ubuntu1.1
Packages in group:  tzdata-icu

  tzdata (2025b-3ubuntu1.1) questing; urgency=medium

  * fix error on the 31st day of month with rust-coreutils (LP: #2130471)

 -- Simon Poirier <email address hidden> Tue, 13 Jan 2026 12:09:34 -0500
2130471 package tzdata 2025b-3ubuntu1 failed to install/upgrade due to invalid date parsing in postinst

tzdata Jan 16th 17:08
Release: questing Repo: main Level: proposed New version: 2025b-3ubuntu1.1
Packages in group:  tzdata-legacy

  tzdata (2025b-3ubuntu1.1) questing; urgency=medium

  * fix error on the 31st day of month with rust-coreutils (LP: #2130471)

 -- Simon Poirier <email address hidden> Tue, 13 Jan 2026 12:09:34 -0500
2130471 package tzdata 2025b-3ubuntu1 failed to install/upgrade due to invalid date parsing in postinst

rust-sudo-rs Jan 16th 17:08
Release: questing Repo: main Level: proposed New version: 0.2.8-1ubuntu5.3
Packages in group:  sudo-rs

  rust-sudo-rs (0.2.8-1ubuntu5.3) questing; urgency=medium

  * Fix crash on script with no execute permissions (LP: #2130973)
    - d/p/post_028/lp-2130973-fix-script-crash-without-exec-permissions.patch

 -- Ghadi Elie Rahme <email address hidden> Fri, 09 Jan 2026 16:15:32 +0000
2130973 Sudo-rs panics executing shell script without execute permission

rustc-1.89 Jan 16th 17:08
Release: noble Repo: universe Level: security New version: 1.89.0+dfsg~24.04-0ubuntu0.24.04.1
Packages in group:  cargo-1.89 cargo-1.89-doc libstd-rust-1.89 libstd-rust-1.89-dev rust-1.89-all rust-1.89-clippy rust-1.89-doc rust-1.89-gdb rust-1.89-lldb rust-1.89-src rustfmt-1.89 (... see all)

  rustc-1.89 (1.89.0+dfsg~24.04-0ubuntu0.24.04.1) noble-security; urgency=medium

  * Backport Rust 1.89 to Noble Numbat (LP: #2138316)
    - Downgrade libgit2 to 1.7.2
    - Replace system LLVM dependencies with vendored version
    - Vendor dh-cargo-vendored-sources to use specific cargo version

 -- Brent Kerby <email address hidden> Thu, 04 Dec 2025 12:48:40 -0700
2138316 Backport rustc-1.89 to Noble

keystone Jan 16th 17:08
Release: noble Repo: main Level: proposed New version: 2:25.0.0-0ubuntu1.2
Packages in group:  keystone-common keystone-doc python3-keystone

  keystone (2:25.0.0-0ubuntu1.2) noble; urgency=medium

  * Fix query for all users in a group while using AD nested group searches
    LP: #2112477
    - d/p/lp2112477-Fix-AD-nested-groups-issues.patch

 -- Jorge Merlino <email address hidden> Mon, 01 Dec 2025 19:37:02 -0300

nvidia-graphics-drivers-590-server Jan 15th 20:12
Release: questing Repo: multiverse Level: proposed New version: 590.48.01-0ubuntu0.25.10.1
Packages in group:  libnvidia-cfg1-590-server libnvidia-common-590-server libnvidia-compute-590-server libnvidia-decode-590-server libnvidia-encode-590-server libnvidia-extra-590-server libnvidia-fbc1-590-server libnvidia-gl-590-server nvidia-compute-utils-590-server nvidia-dkms-590-server nvidia-dkms-590-server-open (... see all)

  nvidia-graphics-drivers-590-server (590.48.01-0ubuntu0.25.10.1) questing; urgency=medium

  * New upstream release 590.48.01 (LP: #2137575)

 -- Jacob Martin <email address hidden> Wed, 07 Jan 2026 09:05:54 -0600

nvidia-graphics-drivers-590 Jan 15th 20:12
Release: questing Repo: multiverse Level: proposed New version: 590.48.01-0ubuntu0.25.10.1
Packages in group:  libnvidia-cfg1-590 libnvidia-common-590 libnvidia-compute-590 libnvidia-decode-590 libnvidia-encode-590 libnvidia-extra-590 libnvidia-fbc1-590 libnvidia-gl-590 nvidia-compute-utils-590 nvidia-dkms-590 nvidia-dkms-590-open (... see all)

  nvidia-graphics-drivers-590 (590.48.01-0ubuntu0.25.10.1) questing; urgency=medium

  * New upstream release 590.48.01 (LP: #2137575)

 -- Jacob Martin <email address hidden> Tue, 06 Jan 2026 17:37:40 -0600


About   -   Send Feedback to @ubuntu_updates