Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2024-4467 | A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted image file containing a `json:{}` value describing blo | qemu qemu qemu qemu qemu qemu qemu qemu |
| CVE | CVE-2024-3567 | A flaw was found in QEMU. An assertion failure was present in the update_sctp_checksum() function in hw/net/net_tx_pkt.c when trying to calculate the | qemu qemu qemu qemu |
| CVE | CVE-2024-3447 | A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s->data_count` and the size of `s->fif | qemu qemu qemu qemu qemu qemu qemu qemu |
| CVE | CVE-2024-3446 | A double free vulnerability was found in QEMU virtio devices (virtio-gpu, virtio-serial-bus, virtio-crypto), where the mem_reentrancy_guard flag insu | qemu qemu qemu qemu qemu qemu qemu qemu |
| Launchpad | 2120814 | binfmt_misc C (Credentials) flag as security risk with setuid binaries | qemu qemu qemu qemu qemu qemu qemu qemu qemu qemu qemu qemu |
| Launchpad | 2117280 | [SRU] Asymmetric routing issue on amphorae in ACTIVE_STANDBY topology | octavia octavia |
| Launchpad | 2108860 | floating IP due to \ | openvpn openvpn openvpn openvpn |
| CVE | CVE-2025-9714 | Uncontrolled recursion inXPath evaluationin libxml2 up to and includin ... | libxml2 libxml2 libxml2 libxml2 libxml2 libxml2 |
| Launchpad | 2122355 | [SRU] New upstream microrelease .NET 9.0.110/9.0.9 | dotnet9 dotnet9 |
| Launchpad | 2122356 | [SRU] New upstream microrelease .NET 8.0.120/8.0.20 | dotnet8 dotnet8 dotnet8 dotnet8 dotnet8 dotnet8 |
| Launchpad | 2117103 | Hardcoded version in debian/rules breaks new uploads | ksh93u+m ksh93u+m ksh93u+m |
| Launchpad | 2121789 | [SRU] libreoffice 25.2.6 for plucky | libreoffice libreoffice libreoffice libreoffice |
| Launchpad | 2120495 | sru cloud-init (25.2 update) to jammy, noble, and plucky | cloud-init cloud-init cloud-init cloud-init cloud-init cloud-init cloud-init cloud-init |
| Launchpad | 2122165 | osc uses removed modules/functions from Python 3.12, breaking on Noble | osc osc |
| Launchpad | 2122116 | Backport open-vm-tools version 2:12.5.0-1 to noble | open-vm-tools open-vm-tools open-vm-tools open-vm-tools |
| Launchpad | 2116213 | Allow advertisement of legacy PTP 2.0 protocol | linuxptp linuxptp |
| Launchpad | 2110302 | nullboot 0.5.3 SRUs | nullboot nullboot |
| Launchpad | 2121327 | AppArmor missing file_lock for logger_lockfile | isc-kea isc-kea isc-kea isc-kea |
| Launchpad | 2103413 | [SRU] Python3.13: Garbage collection due to attribute cache inlining | nova nova nova nova |
| CVE | CVE-2025-8715 | Improper neutralization of newlines in pg_dump in PostgreSQL allows a user of the origin server to inject arbitrary code for restore-time execution a | postgresql-17 postgresql-16 postgresql-16 postgresql-14 postgresql-14 postgresql-17 postgresql-17 postgresql-16 postgresql-16 postgresql-14 postgresql-14 postgresql-17 |
About
-
Send Feedback to @ubuntu_updates
