UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
Launchpad 2091186 Pull-request to address ACPI/HMAT messages at boot linux-azure-nvidia
Launchpad 2092141 ETE tracing failure on multi-socket system linux-azure-nvidia
Launchpad 2094821 PCI resources unassigned with Bluefield3 switch linux-azure-nvidia
Launchpad 2100030 DOE Discovery Issues linux-azure-nvidia
Launchpad 2100032 Backport: \ linux-azure-nvidia
Launchpad 2100340 PCI/ACS: Fix 'pci=config_acs=' parameter linux-azure-nvidia
Launchpad 2102677 Backport: Fix mmu notifiers for range-based invalidates linux-azure-nvidia
Launchpad 2093957 Enable Coresight in Perf linux-azure-nvidia
Launchpad 2103962 Enable the mic-mute led on more HP G12 laptops linux-oem-6.11 linux-oem-6.11
Launchpad 2104876 [SRU] Fix jack detection of rt712 on intel soundwire linux-oem-6.11 linux-oem-6.11
CVE CVE-2025-1861 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the respo php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4 php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4
CVE CVE-2025-1736 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when user-supplied headers are sent, th php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php8.3 php8.3 php8.3 php8.3 php8.1 php8.1
CVE CVE-2025-1734 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when receiving headers from HTTP server php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4 php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4
CVE CVE-2025-1219 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when requesting a HTTP resource using t php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php8.3 php8.3 php8.3 php8.3 php8.1 php8.1
CVE CVE-2025-1217 In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when http request module parses HTTP re php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4 php8.3 php8.3 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4
CVE CVE-2025-30219 RabbitMQ is a messaging and streaming broker. Versions prior to 4.0.3 are vulnerable to a sophisticated attack that could modify virtual host name on rabbitmq-server rabbitmq-server rabbitmq-server rabbitmq-server rabbitmq-server rabbitmq-server rabbitmq-server rabbitmq-server
CVE CVE-2021-33646 The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak. libtar libtar libtar libtar libtar libtar libtar libtar
CVE CVE-2021-33645 The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak. libtar libtar libtar libtar libtar libtar libtar libtar
CVE CVE-2021-33644 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longn libtar libtar libtar libtar libtar libtar libtar libtar
CVE CVE-2021-33643 An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longl libtar libtar libtar libtar libtar libtar libtar libtar



About   -   Send Feedback to @ubuntu_updates