Latest Changelogs for all releases

Note: Only updates for "head" packages where the changelog is available are shown on this page (view all).

apparmor			Nov 28th 03:09
Release: questing	Repo: universe	Level: proposed	New version: 5.0.0~alpha1-0ubuntu8.3
Packages in group:	apparmor-notify dh-apparmor
apparmor (5.0.0~alpha1-0ubuntu8.3) questing; urgency=medium * This is an SRU, tracked in LP: #2130617 * Add patch to grant netrc access to tnftp (LP: #2127491): - d/p/u/profiles-grant-netrc-read-access-to-tnftp.patch * Add patch to fix device tree scan by systemd-detect-virt (LP: #2127111) - d/p/u/profiles-systemd-detect-virt-handle-device-tree-folder.patch * Add patch to allow lsblk reading of Azure NVMe ACPI (LP: #2126920): - d/p/u/lsblk_read_access_azure_acpi.patch * Add patch to fix errors in regression tests with Rust coreutils (LP: #2129779): - d/p/u/regression-fix-for-rust-coreutils.patch -- Ryan Lee <email address hidden> Mon, 20 Oct 2025 11:10:39 -0700
2130617	[SRU] profile fixes for AppArmor in Questing
2127491	AppArmor policy prevents tnftp reading from $HOME/.netrc
2127111	within qemu-RISCV64: systemd-detect-virt results in \
2126920	lsblk profile need to allow read access to Azure NVMe ACPI hierarchy
2129779	Regression test updates for Rust coreutils needs packaging

libreoffice			Nov 28th 03:09
Release: questing	Repo: universe	Level: proposed	New version: 4:25.8.3-0ubuntu0.25.10.1
Packages in group:	libjuh-java libjurt-java libreoffice-base libreoffice-base-drivers libreoffice-base-nogui libreoffice-calc-nogui libreoffice-core-nogui libreoffice-dev-gui libreoffice-draw-nogui libreoffice-evolution libreoffice-gtk4 (... see all)
`libreoffice (4:25.8.3-0ubuntu0.25.10.1) questing; urgency=medium * New upstream release (LP: #2131289) * debian/patches/disable-testDubiousArrayFormulasFODS-on-amd64v3.patch: - disable failing test on amd64v3 -- Rico Tzschichholz <email address hidden> Mon, 10 Nov 2025 10:10:45 +0100`
2131289	[SRU] libreoffice 25.8.3 for questing

libreoffice			Nov 28th 03:09
Release: questing	Repo: main	Level: proposed	New version: 4:25.8.3-0ubuntu0.25.10.1
Packages in group:	fonts-opensymbol gir1.2-lokdocview-0.1 liblibreoffice-java liblibreofficekitgtk libofficebean-java libreoffice-base-core libreoffice-calc libreoffice-common libreoffice-core libreoffice-dev libreoffice-dev-common (... see all)
`libreoffice (4:25.8.3-0ubuntu0.25.10.1) questing; urgency=medium * New upstream release (LP: #2131289) * debian/patches/disable-testDubiousArrayFormulasFODS-on-amd64v3.patch: - disable failing test on amd64v3 -- Rico Tzschichholz <email address hidden> Mon, 10 Nov 2025 10:10:45 +0100`
2131289	[SRU] libreoffice 25.8.3 for questing

apparmor			Nov 28th 03:09
Release: questing	Repo: main	Level: proposed	New version: 5.0.0~alpha1-0ubuntu8.3
Packages in group:	apparmor-profiles apparmor-utils libapache2-mod-apparmor libapparmor1 libapparmor-dev libpam-apparmor python3-apparmor python3-libapparmor
apparmor (5.0.0~alpha1-0ubuntu8.3) questing; urgency=medium * This is an SRU, tracked in LP: #2130617 * Add patch to grant netrc access to tnftp (LP: #2127491): - d/p/u/profiles-grant-netrc-read-access-to-tnftp.patch * Add patch to fix device tree scan by systemd-detect-virt (LP: #2127111) - d/p/u/profiles-systemd-detect-virt-handle-device-tree-folder.patch * Add patch to allow lsblk reading of Azure NVMe ACPI (LP: #2126920): - d/p/u/lsblk_read_access_azure_acpi.patch * Add patch to fix errors in regression tests with Rust coreutils (LP: #2129779): - d/p/u/regression-fix-for-rust-coreutils.patch -- Ryan Lee <email address hidden> Mon, 20 Oct 2025 11:10:39 -0700
2130617	[SRU] profile fixes for AppArmor in Questing
2127491	AppArmor policy prevents tnftp reading from $HOME/.netrc
2127111	within qemu-RISCV64: systemd-detect-virt results in \
2126920	lsblk profile need to allow read access to Azure NVMe ACPI hierarchy
2129779	Regression test updates for Rust coreutils needs packaging

netplan.io			Nov 27th 22:13
Release: questing	Repo: main	Level: proposed	New version: 1.1.2-8ubuntu1~25.10.1
Packages in group:	libnetplan1 libnetplan-dev netplan-generator python3-netplan
netplan.io (1.1.2-8ubuntu1~25.10.1) questing; urgency=medium * Backport netplan.io 1.1.2-8ubuntu1 (LP: #2127195) - Allows non standard OVS setups (e.g. OVS from snap) - Test improvements, especially for slower architectures such as riscv64 - d/t/cloud-init.sh: Adopt for actually generated files instead of dummies - d/control: use dbus-daemon instead of dbus-x11 for build-time tests and suggests systemd-resolved * SRU compatibility - d/gbp.conf: Update for Questing -- Lukas MÃ¤rdian <email address hidden> Tue, 25 Nov 2025 13:04:37 +0100
2127195	[SRU] Backport netplan.io 1.1.2-8ubuntu1 to 24.04

openvpn			Nov 27th 22:13
Release: questing	Repo: main	Level: updates	New version: 2.6.14-2ubuntu1.1
Packages in group:
`openvpn (2.6.14-2ubuntu1.1) questing-security; urgency=medium * SECURITY UPDATE: incorrect HMAC verification check - debian/patches/CVE-2025-13086.patch: fix memcmp check for the hmac verification in the 3way handshake being inverted in src/openvpn/ssl_pkt.c, tests/unit_tests/openvpn/test_pkt.c. - CVE-2025-13086 -- Marc Deslauriers <email address hidden> Mon, 24 Nov 2025 17:30:01 -0500`
CVE-2025-13086	HMAC verification check: fix incorrect memcmp() call

cups			Nov 27th 22:13
Release: questing	Repo: main	Level: updates	New version: 2.4.12-0ubuntu3.3
Packages in group:	cups-bsd cups-client cups-common cups-core-drivers cups-daemon cups-ipp-utils cups-ppdc cups-server-common libcups2-dev libcups2t64 libcupsimage2-dev (... see all)
cups (2.4.12-0ubuntu3.3) questing-security; urgency=medium * SECURITY UPDATE: Local denial-of-service via cupsd.conf update and related issues - debian/patches/CVE-2025-61915.patch: fix various issues in cupsd in conf/cups-files.conf.in, config-scripts/cups-defaults.m4, config.h.in, configure, doc/help/man-cups-files.conf.html, man/cups-files.conf.5, scheduler/auth.c, scheduler/auth.h, scheduler/client.c, scheduler/conf.c, test/run-stp-tests.sh, vcnet/config.h, xcode/CUPS.xcodeproj/project.pbxproj, xcode/config.h. - CVE-2025-61915 -- Marc Deslauriers <email address hidden> Wed, 19 Nov 2025 09:17:12 -0500

netplan.io			Nov 27th 22:13
Release: plucky	Repo: main	Level: proposed	New version: 1.1.2-8ubuntu1~25.04.1
Packages in group:	libnetplan1 libnetplan-dev netplan-generator python3-netplan
netplan.io (1.1.2-8ubuntu1~25.04.1) plucky; urgency=medium * Backport netplan.io 1.1.2-8ubuntu1 (LP: #2127195) - Allows non standard OVS setups (e.g. OVS from snap) - Test improvements, especially for slower architectures such as riscv64 - d/t/cloud-init.sh: Adopt for actually generated files instead of dummies - d/control: use dbus-daemon instead of dbus-x11 for build-time tests and suggests systemd-resolved * SRU compatibility - d/gbp.conf: Update for Plucky -- Lukas MÃ¤rdian <email address hidden> Tue, 25 Nov 2025 13:04:37 +0100
2127195	[SRU] Backport netplan.io 1.1.2-8ubuntu1 to 24.04

openvpn			Nov 27th 22:13
Release: plucky	Repo: main	Level: updates	New version: 2.6.14-0ubuntu0.25.04.3
Packages in group:
`openvpn (2.6.14-0ubuntu0.25.04.3) plucky-security; urgency=medium * SECURITY UPDATE: incorrect HMAC verification check - debian/patches/CVE-2025-13086.patch: fix memcmp check for the hmac verification in the 3way handshake being inverted in src/openvpn/ssl_pkt.c, tests/unit_tests/openvpn/test_pkt.c. - CVE-2025-13086 -- Marc Deslauriers <email address hidden> Mon, 24 Nov 2025 17:31:42 -0500`
CVE-2025-13086	HMAC verification check: fix incorrect memcmp() call

cups			Nov 27th 22:13
Release: plucky	Repo: main	Level: updates	New version: 2.4.12-0ubuntu1.4
Packages in group:	cups-bsd cups-client cups-common cups-core-drivers cups-daemon cups-ipp-utils cups-ppdc cups-server-common libcups2-dev libcups2t64 libcupsimage2-dev (... see all)
cups (2.4.12-0ubuntu1.4) plucky-security; urgency=medium * SECURITY UPDATE: Local denial-of-service via cupsd.conf update and related issues - debian/patches/CVE-2025-61915.patch: fix various issues in cupsd in conf/cups-files.conf.in, config-scripts/cups-defaults.m4, config.h.in, configure, doc/help/man-cups-files.conf.html, man/cups-files.conf.5, scheduler/auth.c, scheduler/auth.h, scheduler/client.c, scheduler/conf.c, test/run-stp-tests.sh, vcnet/config.h, xcode/CUPS.xcodeproj/project.pbxproj, xcode/config.h. - CVE-2025-61915 -- Marc Deslauriers <email address hidden> Wed, 19 Nov 2025 09:23:27 -0500

netplan.io			Nov 27th 22:13
Release: noble	Repo: main	Level: proposed	New version: 1.1.2-8ubuntu1~24.04.1
Packages in group:	libnetplan1 libnetplan-dev netplan-generator python3-netplan
netplan.io (1.1.2-8ubuntu1~24.04.1) noble; urgency=medium * Backport netplan.io 1.1.2-8ubuntu1 (LP: #2127195) - Allows non standard OVS setups (e.g. OVS from snap) - Test improvements, especially for slower architectures such as riscv64 - d/t/cloud-init.sh: Adopt for actually generated files instead of dummies - d/control: use dbus-daemon instead of dbus-x11 for build-time tests and suggests systemd-resolved * SRU compatibility - d/gbp.conf: Update for Noble - d/libnetplan1.symbols: keep it at the original version - d/p/series: Keep d/p/sru-compat/* patches - d/p/series: Drop wait-online-dns* which is incompatible with systemd v255 + d/control: Keep systemd dependency at v248 -- Lukas MÃ¤rdian <email address hidden> Tue, 25 Nov 2025 12:45:14 +0100
2127195	[SRU] Backport netplan.io 1.1.2-8ubuntu1 to 24.04

openvpn			Nov 27th 22:13
Release: noble	Repo: main	Level: updates	New version: 2.6.14-0ubuntu0.24.04.3
Packages in group:
`openvpn (2.6.14-0ubuntu0.24.04.3) noble-security; urgency=medium * SECURITY UPDATE: incorrect HMAC verification check - debian/patches/CVE-2025-13086.patch: fix memcmp check for the hmac verification in the 3way handshake being inverted in src/openvpn/ssl_pkt.c, tests/unit_tests/openvpn/test_pkt.c. - CVE-2025-13086 -- Marc Deslauriers <email address hidden> Mon, 24 Nov 2025 17:32:32 -0500`
CVE-2025-13086	HMAC verification check: fix incorrect memcmp() call

cups			Nov 27th 22:13
Release: noble	Repo: main	Level: updates	New version: 2.4.7-1.2ubuntu7.7
Packages in group:	cups-bsd cups-client cups-common cups-core-drivers cups-daemon cups-ipp-utils cups-ppdc cups-server-common libcups2-dev libcups2t64 libcupsimage2-dev (... see all)
cups (2.4.7-1.2ubuntu7.7) noble-security; urgency=medium * SECURITY UPDATE: Local denial-of-service via cupsd.conf update and related issues - debian/patches/CVE-2025-61915.patch: fix various issues in cupsd in conf/cups-files.conf.in, config-scripts/cups-defaults.m4, config.h.in, configure, doc/help/man-cups-files.conf.html, man/cups-files.conf.5, scheduler/auth.c, scheduler/auth.h, scheduler/client.c, scheduler/conf.c, test/run-stp-tests.sh, vcnet/config.h, xcode/CUPS.xcodeproj/project.pbxproj, xcode/config.h. - CVE-2025-61915 -- Marc Deslauriers <email address hidden> Wed, 19 Nov 2025 09:25:04 -0500

cups			Nov 27th 22:13
Release: jammy	Repo: main	Level: updates	New version: 2.4.1op1-1ubuntu4.15
Packages in group:	cups-bsd cups-client cups-common cups-core-drivers cups-daemon cups-ipp-utils cups-ppdc cups-server-common libcups2 libcups2-dev libcupsimage2 (... see all)
cups (2.4.1op1-1ubuntu4.15) jammy-security; urgency=medium * SECURITY UPDATE: Local denial-of-service via cupsd.conf update and related issues - debian/patches/CVE-2025-61915.patch: fix various issues in cupsd in conf/cups-files.conf.in, config-scripts/cups-defaults.m4, config.h.in, configure, doc/help/man-cups-files.conf.html, man/cups-files.conf.5, scheduler/auth.c, scheduler/auth.h, scheduler/client.c, scheduler/conf.c, test/run-stp-tests.sh, vcnet/config.h, xcode/CUPS.xcodeproj/project.pbxproj, xcode/config.h. - CVE-2025-61915 -- Marc Deslauriers <email address hidden> Wed, 19 Nov 2025 09:33:06 -0500

webkit2gtk			Nov 27th 19:55
Release: questing	Repo: universe	Level: updates	New version: 2.50.1-0ubuntu0.25.10.1
Packages in group:	libjavascriptcoregtk-4.0-bin libjavascriptcoregtk-bin webkit2gtk-driver webkitgtk-webdriver
`webkit2gtk (2.50.1-0ubuntu0.25.10.1) questing-security; urgency=medium * Update to 2.50.1 to fix security issues. - CVE-2025-43343 * debian/patches, debian/source/lintian-overrides, debian/copyright, debian/gbp.conf, debian/*symbols: sync with resolute package. -- Marc Deslauriers <email address hidden> Wed, 29 Oct 2025 09:40:19 -0400`
CVE-2025-43343	The issue was addressed with improved memory handling. This issue is fixed in Safari 26, tvOS 26, watchOS 26, iOS 26 and iPadOS 26, visionOS 26. Proc

About - Send Feedback to @ubuntu_updates