UbuntuUpdates.org

Bugs addressed in recent updates

All Launchpad Ubuntu Debian CVE

Origin Bug number Title Packages
Launchpad 2093864 default network no more activated in 10.10 libvirt libvirt libvirt libvirt
Launchpad 1850980 mysql-server causes logrotate.service to fail at boot mysql-8.4 mysql-8.0 mysql-8.0 mysql-8.0 mysql-8.4 mysql-8.0
Launchpad 2060730 totem cannot install codecs via packagekit packagekit packagekit packagekit packagekit
Launchpad 2078759 Ability to use comments in YAML generated by Netplan ubuntu-settings ubuntu-settings ubuntu-settings ubuntu-settings
CVE CVE-2024-1681 corydolphin/flask-cors is vulnerable to log injection when the log level is set to debug. An attacker can inject fake log entries into the log file b python-flask-cors python-flask-cors
CVE CVE-2024-6221 A vulnerability in corydolphin/flask-cors version 4.0.1 allows the `Access-Control-Allow-Private-Network` CORS header to be set to true by default. T python-flask-cors python-flask-cors python-flask-cors python-flask-cors
CVE CVE-2024-6844 A vulnerability in corydolphin/flask-cors version 4.0.1 allows for inconsistent CORS matching due to the handling of the '+' character in URL paths. python-flask-cors python-flask-cors python-flask-cors python-flask-cors python-flask-cors python-flask-cors
CVE CVE-2024-6866 corydolphin/flask-cors version 4.01 contains a vulnerability where the request path matching is case-insensitive due to the use of the `try_match` fu python-flask-cors python-flask-cors python-flask-cors python-flask-cors python-flask-cors python-flask-cors
CVE CVE-2024-6839 corydolphin/flask-cors version 4.0.1 contains an improper regex path matching vulnerability. The plugin prioritizes longer regex patterns over more s python-flask-cors python-flask-cors python-flask-cors python-flask-cors python-flask-cors python-flask-cors
Launchpad 2114743 Backport lowlatency-kernel to Noble lowlatency-kernel
Launchpad 2115574 Upgrade of libpciaccess0 to 0.17-3ubuntu0.25.04.1 causes black screen on boot with AMD Radeon GPU libpciaccess libpciaccess libpciaccess libpciaccess
CVE CVE-2025-32463 Local Privilege Escalation via chroot option sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo
CVE CVE-2025-32462 Local Privilege Escalation via host option sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo sudo
Launchpad 2115390 intel-ish-hid keeps timeout while accessing it during suspend linux-oem-6.14
Launchpad 2115200 Enable AMD STX/KRK soundwire support on new Dell GhostRider platform linux-oem-6.14
Launchpad 2115478 [SRU] Add waiting latency for USB port resume linux-oem-6.14
Launchpad 2113992 Creating a VXLAN interface with a Fan mapping causes a NULL pointer dereference caught by ubuntu_fan_smoke_test:sut-scan linux-hwe-6.14 linux-hwe-6.14
Launchpad 2111956 Add SVSM vTPM support for AMD SEV-SNP confidential VMs linux-gcp-6.14 linux-gcp-6.8
CVE CVE-2023-40403 The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.6, tvOS 17, iOS 16.7 and iPadOS 16.7, macOS Monterey 1 libxslt libxslt
Launchpad 2107636 New upstream release 550.163.01 UDA13 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550 nvidia-graphics-drivers-550



About   -   Send Feedback to @ubuntu_updates