Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| Launchpad | 2121786 | Using a custom theme leaks 10-15 MB per hour | gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell |
| Launchpad | 2120734 | Update Wi-Fi icons between disconnect and adapter deactivation | gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell |
| CVE | CVE-2025-43368 | A use-after-free issue was addressed with improved memory management. This issue is fixed in Safari 26, macOS Tahoe 26, iOS 26 and iPadOS 26. Process | webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk |
| CVE | CVE-2025-43356 | The issue was addressed with improved handling of caches. This issue is fixed in tvOS 26, Safari 26, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 2 | webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk |
| CVE | CVE-2025-43342 | A correctness issue was addressed with improved checks. This issue is fixed in tvOS 26, Safari 26, iOS 18.7 and iPadOS 18.7, visionOS 26, watchOS 26, | webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk |
| CVE | CVE-2025-43272 | The issue was addressed with improved memory handling. This issue is fixed in Safari 26, visionOS 26, watchOS 26, macOS Tahoe 26, iOS 26 and iPadOS 2 | webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk webkit2gtk |
| CVE | CVE-2025-23259 | NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver (PMD), where an attacker on a VM in the system might be able to cause information d | dpdk dpdk dpdk dpdk dpdk dpdk dpdk dpdk dpdk dpdk dpdk dpdk |
| CVE | CVE-2025-53537 | LibHTP is a security-aware parser for the HTTP protocol and its related bits and pieces. In versions 0.5.50 and below, there is a traffic-induced mem | libhtp libhtp |
| Launchpad | 2125411 | Transition 550 to 580 | nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 |
| CVE | CVE-2024-45237 | An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a | fort-validator fort-validator |
| CVE | CVE-2024-45239 | An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a | fort-validator fort-validator |
| CVE | CVE-2024-45238 | An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a | fort-validator fort-validator |
| CVE | CVE-2024-45236 | An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a | fort-validator fort-validator |
| CVE | CVE-2024-45235 | An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a | fort-validator fort-validator |
| CVE | CVE-2024-45234 | An issue was discovered in Fort before 1.6.3. A malicious RPKI repository that descends from a (trusted) Trust Anchor can serve (via rsync or RRDP) a | fort-validator fort-validator |
| Launchpad | 2125930 | [SRU] azure-proxy-agent: fix service file ordering to avoid cycle with cloud-init | azure-proxy-agent azure-proxy-agent azure-proxy-agent azure-proxy-agent azure-proxy-agent azure-proxy-agent azure-proxy-agent azure-proxy-agent azure-proxy-agent |
| CVE | CVE-2025-11230 | BUG/CRITICAL: mjson: fix possible DoS when parsing numbers | haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy |
| CVE | CVE-2025-43718 | Poppler 24.06.1 through 25.x before 25.04.0 allows stack consumption and a SIGSEGV via deeply nested structures within the metadata (such as GTS_PDFE | poppler poppler poppler poppler poppler poppler poppler poppler poppler poppler poppler poppler |
| CVE | CVE-2025-59362 | Squid through 7.1 mishandles ASN.1 encoding of long SNMP OIDs. This occurs in asn_build_objid in lib/snmplib/asn1.c. | squid squid squid squid squid squid squid squid squid squid squid squid |
| Launchpad | 2121570 | net: mana: Use page pool fragments for RX buffers instead of full pages to improve memory efficiency | linux-azure-fde-6.8 linux-azure-nvidia linux-azure-fde-6.8 linux-azure-nvidia |
About
-
Send Feedback to @ubuntu_updates
