Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| Launchpad | 2150070 | Black screen with mouse cursor only after entering Ubuntu Kylin live session | ukui-desktop-environment ukui-desktop-environment |
| Launchpad | 2148718 | intel-ipu7 / intel-ipu7-isys modules are shipped unsigned in latest Resolute kernels, breaking Secure Boot systems | linux linux |
| Launchpad | 2149808 | Qualcomm X1E: Speaker overdrive causes hardware protection shutdown | linux linux |
| CVE | CVE-2026-40164 | jq is a command-line JSON processor. Before commit 0c7d133c3c7e37c00b6d46b658a02244fdd3c784, jq used MurmurHash3 with a hardcoded, publicly visible s | jq jq jq jq jq jq jq jq |
| CVE | CVE-2026-39979 | jq is a command-line JSON processor. In commits before 2f09060afab23fe9390cce7cb860b10416e1bf5f, the jv_parse_sized() API in libjq accepts a counted | jq jq jq jq jq jq jq jq |
| CVE | CVE-2026-39956 | jq is a command-line JSON processor. In commits after 69785bf77f86e2ea1b4a20ca86775916889e91c9, the _strindices builtin in jq's src/builtin.c passes | jq jq jq jq jq jq jq jq |
| CVE | CVE-2026-33948 | jq is a command-line JSON processor. Commits before 6374ae0bcdfe33a18eb0ae6db28493b1f34a0a5b contain a vulnerability where CLI input parsing allows v | jq jq jq jq jq jq jq jq |
| CVE | CVE-2026-33947 | jq is a command-line JSON processor. In versions 1.8.1 and below, functions jv_setpath(), jv_getpath(), and delpaths_sorted() in jq's src/jv_aux.c us | jq jq jq jq jq jq jq jq |
| CVE | CVE-2026-32316 | jq is a command-line JSON processor. An integer overflow vulnerability exists through version 1.8.1 within the jvp_string_append() and jvp_string_cop | jq jq jq jq jq jq jq jq |
| Debian | 1134612 | lomiri: Missing dependency on deviceinfo-tools | lomiri lomiri |
| Launchpad | 2125687 | Fail to upgrade from plucky to questing in a basic Ubuntu | ubuntu-release-upgrader ubuntu-release-upgrader ubuntu-release-upgrader ubuntu-release-upgrader |
| Launchpad | 2149762 | Revert \ | linux linux linux-hwe-6.8 linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-riscv-6.8 linux-riscv-6.8 linux-hwe-6.8 linux-azure-nvidia linux-lowlatency-hwe-6.8 linux-nvidia-tegra |
| Launchpad | 2149766 | Linux kernel 6.17.0-22.22 breaks amdxdna | linux linux linux linux linux-hwe-6.17 linux-hwe-6.8 linux-riscv linux-lowlatency-hwe-6.8 linux-azure-nvidia linux-riscv-6.17 linux-riscv-6.8 linux-riscv linux-riscv-6.8 linux-hwe-6.8 linux-riscv-6.17 linux-azure-nvidia linux-lowlatency-hwe-6.8 linux-hwe-6.17 linux-nvidia-tegra |
| Launchpad | 2149788 | Changing system language sets an incomplete configuration | gnome-control-center accountsservice accountsservice gnome-control-center |
| Launchpad | 2149829 | Autostart setting is disabled on non-sandboxed app | gnome-control-center gnome-control-center |
| Launchpad | 2147661 | [SRU R/Q/N] Wi-Fi password dialog does not appear via quicksettings connections on post-login lock screen | gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell gnome-shell |
| Launchpad | 2147595 | [SRU] Prefer Wayland on HP AMD+NVIDIA platform | gdm3 gdm3 |
| Launchpad | 2146768 | Avoid 10-second timeout on platforms where GPU is not advertised as VGA class | gdm3 gdm3 gdm3 gdm3 |
| Debian | 1131167 | libgtsam-dev: Missing dependencies on libboost-dev and libtbb-dev | gtsam |
| CVE | CVE-2026-5778 | Integer underflow in wolfSSL packet sniffer <= 5.9.0 allows an attacker to cause a program crash in the AEAD decryption path by injecting a TLS recor | wolfssl wolfssl |
About
-
Send Feedback to @ubuntu_updates
