UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
Launchpad 2080004 Shotwell bug - Out of memory #5123 shotwell shotwell
Launchpad 2041831 [SRU] Update-manager crashes when packages are de-selected with the mouse update-manager update-manager
Launchpad 2003266 22.04 package lacks GSSAPI support neon27
Launchpad 2055388 suspected memory leak with indicator-keyboard (causing gnome-session-flashback to freeze after startup) indicator-keyboard
Launchpad 2082868 [g1200] regulators not enabled after sru d2024.08.12\t linux-mtk linux-mtk
CVE CVE-2020-12667 Knot Resolver before 5.1.1 allows traffic amplification via a crafted DNS answer from an attacker-controlled server, aka an "NXNSAttack" issue. This knot-resolver knot-resolver
CVE CVE-2019-19331 knot-resolver before version 4.3.0 is vulnerable to denial of service through high CPU utilization. DNS replies with very many resource records might knot-resolver knot-resolver
CVE CVE-2019-10191 A vulnerability was discovered in DNS resolver of knot resolver before version 4.1.0 which allows remote attackers to downgrade DNSSEC-secure domains knot-resolver knot-resolver
CVE CVE-2019-10190 A vulnerability was discovered in DNS resolver component of knot resolver through version 3.2.0 before 4.1.0 which allows remote attackers to bypass knot-resolver knot-resolver
CVE CVE-2024-9026 Logs from childrens may be altered php8.3 php8.3 php8.1 php8.1 php8.3 php8.3 php8.1 php8.1
CVE CVE-2024-8927 cgi.force_redirect configuration is byppassible due to the environment variable collision php7.4 php8.3 php8.3 php8.1 php8.1 php7.4 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4
CVE CVE-2024-8925 Erroneous parsing of multipart form data php7.4 php8.3 php8.3 php8.1 php8.1 php7.4 php8.3 php8.3 php8.1 php8.1 php7.4 php7.4
CVE CVE-2024-43802 Vim is an improved version of the unix vi text editor. When flushing the typeahead buffer, Vim moves the current position in the typeahead buffer but vim vim vim vim vim vim vim vim vim vim vim vim
CVE CVE-2024-42472 Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.14.0 and 1.15.10, a malicious or compromised Flatpak app us flatpak flatpak bubblewrap flatpak bubblewrap bubblewrap flatpak bubblewrap flatpak bubblewrap flatpak bubblewrap
Launchpad 2077087 CVE-2024-42472: Access to files outside sandbox for apps using persistent= (--persist) flatpak flatpak flatpak flatpak flatpak flatpak
Launchpad 2073430 Automatic Time Zone not working on 24.04 gnome-control-center
Launchpad 2076164 List of \ gnome-control-center
Launchpad 2080611 [SRU] Backport gnome-control-center 46.4 to Noble gnome-control-center
Launchpad 2081700 Can't boot from encrypted volume after initramfs-tools=0.142ubuntu25.3 update initramfs-tools
Launchpad 2080518 /usr/bin/w:11:print_host:print_from:showinfo:main procps procps



About   -   Send Feedback to @ubuntu_updates