Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| Launchpad | 2031531 | net:rtnetlink.sh in ubuntu_kernel_selftests failed with FAIL: address proto IPv4 / IPv6 | linux linux-hwe-6.8 linux-hwe-6.8 |
| Launchpad | 2012859 | fib_tests.sh in ubuntu_kernel_selftests failed with IPv4 mangling tests Connection check - server side | linux linux-hwe-6.8 linux-hwe-6.8 |
| Launchpad | 2137586 | Noble update: upstream stable patchset 2026-01-06 | linux linux-hwe-6.8 linux-hwe-6.8 |
| Launchpad | 2131265 | [SRU] ixgbe: Add support for E610 in Noble | linux linux-hwe-6.8 linux-hwe-6.8 |
| Launchpad | 2130244 | power: intel_pstate: Fix unchecked MSR | linux linux-hwe-6.8 linux-hwe-6.8 |
| Launchpad | 2137528 | TPM timeouts occur on some Infineon TPMs | linux linux-hwe-6.8 linux-hwe-6.8 |
| Launchpad | 2136820 | ubuntu_kselftests:_net/net:gre_gso.sh failing | linux linux linux linux linux linux-hwe-6.17 linux-hwe-6.8 linux-hwe-6.8 linux-hwe-6.17 |
| Launchpad | 2122352 | [SRU] Noble/1.83: compile error re: undefined behavior (fix available) | boost1.83 boost1.83 boost1.83 boost1.83 |
| CVE | CVE-2025-67726 | Tornado is a Python web framework and asynchronous networking library. Versions 6.5.2 and below use an inefficient algorithm when parsing parameters | python-tornado python-tornado python-tornado python-tornado python-tornado python-tornado |
| CVE | CVE-2025-67725 | Tornado is a Python web framework and asynchronous networking library. In versions 6.5.2 and below, a single maliciously crafted HTTP request can blo | python-tornado python-tornado python-tornado python-tornado python-tornado python-tornado |
| CVE | CVE-2025-67724 | Tornado is a Python web framework and asynchronous networking library. In versions 6.5.2 and below, the supplied reason phrase is used unescaped in H | python-tornado python-tornado python-tornado python-tornado python-tornado python-tornado |
| Launchpad | 2127664 | New HAProxy upstream microreleases 2.4.30, 2.8.16, and 3.0.12 | haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy haproxy |
| CVE | CVE-2025-69277 | libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to crypto_core_ed25519_is_valid_point, mishan | libsodium libsodium libsodium libsodium libsodium libsodium libsodium libsodium |
| CVE | CVE-2025-67269 | An integer underflow vulnerability exists in the `nextstate()` function in `gpsd/packet.c` of gpsd versions prior to commit `ffa1d6f40bca0b035fc7f5e5 | gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd |
| CVE | CVE-2025-67268 | gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2000.c file. The hnd_129540 function, wh | gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd gpsd |
| CVE | CVE-2025-13193 | A flaw was found in libvirt. External inactive snapshots for shut-down VMs are incorrectly created as world-readable, making it possible for unprivil | libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt |
| CVE | CVE-2025-12748 | A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was performed before the ACL c | libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt libvirt |
| Launchpad | 2131951 | Silent data corruption bug in CIFS module for write operations affecting kernel ~[6.3-6.9] | linux-azure-nvidia linux-azure-nvidia |
| Launchpad | 2136791 | xtrx-dkms FTBS in Noble with the linux-6.17 kernel | xtrx-dkms xtrx-dkms |
| Launchpad | 2136849 | oss4-dkms FTBS in Noble with the linux-6.17 kernel | oss4 oss4 |
About
-
Send Feedback to @ubuntu_updates
