Bugs addressed in recent updates
| Origin | Bug number | Title | Packages |
|---|---|---|---|
| CVE | CVE-2025-49112 | setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev->size - prev->used. | valkey valkey valkey valkey valkey valkey |
| CVE | CVE-2025-46819 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted LU | valkey valkey valkey valkey valkey valkey |
| CVE | CVE-2025-46818 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lu | valkey valkey valkey valkey valkey valkey |
| CVE | CVE-2025-46817 | Redis is an open source, in-memory database that persists on disk. Versions 8.2.1 and below allow an authenticated user to use a specially crafted Lu | valkey valkey valkey valkey valkey valkey |
| Launchpad | 2127122 | Update Valkey to 7.2.11 in noble, 8.0.6 in plucky, and 8.1.4 in questing + resolute | valkey valkey valkey valkey valkey valkey |
| Launchpad | 2122598 | Gtk4 deb package doesn't build in s390x architecture | gtk4 gtk4 |
| CVE | CVE-2025-40780 | Cache poisoning due to weak PRNG | bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 |
| CVE | CVE-2025-40778 | Cache poisoning attacks with unsolicited RRs | bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 |
| CVE | CVE-2025-8677 | Resource exhaustion via malformed DNSKEY handling | bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 bind9 |
| Launchpad | 2125535 | makeself archive failing md5sum validation [dd: partial write to slow reader] | rust-coreutils rust-coreutils rust-coreutils |
| Launchpad | 2127970 | [Ubuntu 25.10 Questing] rust coreutils \ | rust-coreutils rust-coreutils rust-coreutils |
| Launchpad | 2051348 | AAVMF firmware volume (de)serialization broken | python-uefivars |
| Launchpad | 2117339 | [nvidia] Software rendering in GNOME Shell Wayland sessions | egl-wayland |
| CVE | CVE-2025-48041 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This v | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| CVE | CVE-2025-48040 | Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is ass | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| CVE | CVE-2025-48039 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Ex | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| CVE | CVE-2025-48038 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Ex | erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang erlang |
| Launchpad | 2113790 | JSON and XML output broken if path invalid | tree tree tree tree tree tree tree |
| Launchpad | 2129017 | [SRU] Fix incorrect PCR selection list used in nullboot tests | ubuntu-boot-test python-uefivars ubuntu-boot-test |
| Launchpad | 2113448 | FRR forgets learned MACs on redundant EVPN over VXLAN links | frr frr |
About
-
Send Feedback to @ubuntu_updates
