[Bug 1978555] Re: Multiple vulnerabilities in Focal and Jammy

** Changed in: spip (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1978555 Title: Multiple vulnerabilities in Focal and Jammy To manage notifications a

[Bug 1968043] Re: Open CVE-2021-4048 with critical severity

** Changed in: lapack (Ubuntu Focal) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1968043 Title: Open CVE-2021-4048 with critical severity To manage notificat

[Bug 2062406] Re: CVE-2024-32462: Sandbox escape via RequestBackground portal and CWE-88

** Changed in: flatpak (Ubuntu Focal) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2062406 Title: CVE-2024-32462: Sandbox escape via RequestBackground portal a

[Bug 1860657] Re: Prevent arm64 guest from accessing host debug registers

** Changed in: linux (Ubuntu Focal) Status: Fix Committed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1860657 Title: Prevent arm64 guest from accessing host debug registers To

[Bug 2014052] Re: [Lunar FFE]: Samba 4.18.1, 4.17.7 and 4.16.10 Security Releases

** Changed in: samba (Ubuntu Focal) Status: In Progress => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2014052 Title: [Lunar FFE]: Samba 4.18.1, 4.17.7 and 4.16.10 Security Releas

[Bug 2040137] Re: exposing the EFI shell in Secure Boot mode can lead to security bypass

** Changed in: lxd (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2040137 Title: exposing the EFI shell in Secure Boot mode can lead to security bypass

[Bug 2054343] Re: CVE-2023-4039: ARM64 GCC

** Changed in: gcc-10 (Ubuntu Focal) Status: In Progress => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2054343 Title: CVE-2023-4039: ARM64 GCC To manage notifications about this

[Bug 2058138] Re: [SRU] Neutron OVSHybridIptablesFirewallDriver and IptablesFirewallDriver don't enforce Remote address groups

** Changed in: neutron (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2058138 Title: [SRU] Neutron OVSHybridIptablesFirewallDriver and IptablesFirewal

[Bug 2106320] Re: OIDCProviderAuthRequestMethod POST leaks protected data

** Changed in: libapache2-mod-auth-openidc (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/2106320 Title: OIDCProviderAuthRequestMethod POST leak

[Bug 1931510] Re: [SRU] Thunar CVE-2021-32563 (focal, groovy, hirsute)

** Changed in: thunar (Ubuntu Focal) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1931510 Title: [SRU] Thunar CVE-2021-32563 (focal, groovy, hirsute) To manag

[Bug 1991975] Re: dev file system is mounted without nosuid or noexec

** Changed in: linux (Ubuntu Focal) Status: In Progress => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1991975 Title: dev file system is mounted without nosuid or noexec To manag

[Bug 2009858] Re: User authentication is broken with 2:4.15.13+dfsg-0ubuntu0.20.04.1 package

** Changed in: samba (Ubuntu Focal) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2009858 Title: User authentication is broken with 2:4.15.13+dfsg-0ubuntu0.20.0

[Bug 2046372] Re: Potential security issue fixed in 1.1.2, 1.0.3 and 0.103.10

** Changed in: clamav (Ubuntu Focal) Status: Triaged => Won't Fix ** Changed in: libclamunrar (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bug

[Bug 1998060] Re: CVE-2022-37290: Pasted zip archive/invalid file causes NPD

** Changed in: caja (Ubuntu Focal) Status: New => Won't Fix ** Changed in: nemo (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1998060 Title: CV

[Bug 1981574] Re: dwarves-dfsg from updates is required to build security updates of kernels please release dwarves-dfsg to security

** Changed in: dwarves-dfsg (Ubuntu Focal) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1981574 Title: dwarves-dfsg from updates is required to build security up

[Bug 1933980] Re: NVIDIA CVE-2021-{1093|1094|1094}

** Changed in: linux (Ubuntu Focal) Status: Triaged => Won't Fix ** Changed in: linux-restricted-modules (Ubuntu Focal) Status: Triaged => Won't Fix ** Changed in: nvidia-graphics-drivers-465 (Ubuntu Focal) Status: In Progress => Won't Fix -- You received this bug notificat

[Bug 1968334] Re: Fix CVE-2019-13115

** Changed in: libssh2 (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1968334 Title: Fix CVE-2019-13115 To manage notifications about this bug

[Bug 1957716] Re: Update for CVE-2021-43860 and CVE-2022-21682

** Changed in: flatpak (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1957716 Title: Update for CVE-2021-43860 and CVE-2022-21682 To manage notificatio

[Bug 1973300] Re: NVIDIA CVE-2022-{28181|28183|28184|28185|28191|28192}

** Changed in: linux-restricted-modules (Ubuntu Focal) Status: Fix Committed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1973300 Title: NVIDIA CVE-2022-{28181|28183|28184|28185

[Bug 1970779] Re: Upgrade to 2.36.7 for Focal and Jammy

** Changed in: wpewebkit (Ubuntu Focal) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1970779 Title: Upgrade to 2.36.7 for Focal and Jammy To manage no

[Bug 1928679] Re: Support importing mokx keys into revocation list from the mok table

** Changed in: linux-hwe-5.8 (Ubuntu Focal) Status: Fix Committed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1928679 Title: Support importing mokx keys into revocation list fr

[Bug 1928648] Re: expiring trust anchor compatibility issue

** Changed in: gnutls28 (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1928648 Title: expiring trust anchor compatibility issue To manage notifications

[Bug 1853142] Re: CVE-2019-18660: patches for Ubuntu

** Changed in: linux (Ubuntu Focal) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1853142 Title: CVE-2019-18660: patches for Ubuntu To manage notifications about

[Bug 1867390] Re: Update libarchive to 3.4.2

** Changed in: libarchive (Ubuntu Focal) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1867390 Title: Update libarchive to 3.4.2 To manage notifications about th

[Bug 1885738] Re: Apache Tomcat HTTP/2 Denial of Service Vulnerability

** Changed in: tomcat9 (Ubuntu Focal) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/bugs/1885738 Title: Apache Tomcat HTTP/2 Denial of Service Vulnerability T

[Bug 1881632] Re: esm security updates not reported by apt update-notifier

** Changed in: update-notifier (Ubuntu Focal) Status: Triaged => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1881632 Title: esm security updates not reported by apt update-notifie

[Bug 1917904] Re: Arbitrary file reads

** Changed in: openjdk-lts (Ubuntu Focal) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1917904 Title: Arbitrary file reads To manage notifications about this bug go

[Bug 2097527] Re: ruby2.7 2.7.0-5ubuntu1.16 regression: REXML parse error with "xml:" prefix

before end of this week. TIA ** Changed in: ruby2.7 (Ubuntu) Assignee: (unassigned) => Nishit Majithia (0xnishit) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2097527 Title: ruby2.7 2.

[Bug 2097527] Re: ruby2.7 2.7.0-5ubuntu1.16 regression: REXML parse error with "xml:" prefix

Thanks for reporting the issue. I will be working on fixing this -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2097527 Title: ruby2.7 2.7.0-5ubuntu1.16 regression: REXML parse error with "xml:" p

[Bug 2089239] Re: tarfile.py regression: "ReadError: invalid header"

*** This bug is a duplicate of bug 2089071 *** https://bugs.launchpad.net/bugs/2089071 it is also fixed in jammy https://ubuntu.com/security/notices/USN-7015-6 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad

[Bug 2089071] Re: tarfile.py regression: "ReadError: invalid header"

** Also affects: python2.7 (Ubuntu Jammy) Importance: Undecided Status: New ** Changed in: python2.7 (Ubuntu Jammy) Status: New => Fix Released ** Changed in: python2.7 (Ubuntu Jammy) Assignee: (unassigned) => Nishit Majithia (0xnishit) -- You received th

[Bug 2089136] Re: python2.7 (2.7.18-1~20.04.5) breaks pip tar downloads

*** This bug is a duplicate of bug 2089071 *** https://bugs.launchpad.net/bugs/2089071 fix has been released: https://ubuntu.com/security/notices/USN-7015-6 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.ne

[Bug 2089071] Re: tarfile.py regression: "ReadError: invalid header"

igned) => Nishit Majithia (0xnishit) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2089071 Title: tarfile.py regression: "ReadError: invalid header" To manage notifications about thi

[Bug 2070807] Re: [MIR] highway

I reviewed highway 1.2.0-3ubuntu2 as checked into oracular. This shouldn't be considered a full audit but rather a quick gauge of maintainability. PLACE OTHER NOTES REGARDING THE NATURE OF THE REVIEW ITSELF. highway is a C++ library that provides portable SIMD/vector intrinsics. It makes SIMD/vec

[Bug 2036467] Re: Resizing cloud-images occasionally fails due to superblock checksum mismatch in resize2fs

** Changed in: e2fsprogs (Ubuntu Mantic) Status: In Progress => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2036467 Title: Resizing cloud-images occasionally fails due to superblo

[Bug 2040137] Re: exposing the EFI shell in Secure Boot mode can lead to security bypass

** Changed in: lxd (Ubuntu Mantic) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2040137 Title: exposing the EFI shell in Secure Boot mode can lead to security bypass

[Bug 2040280] Re: CVE-2022-40982 on Ubuntu Mantic Linux Kernel still not fixed

** Changed in: intel-microcode (Ubuntu Mantic) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2040280 Title: CVE-2022-40982 on Ubuntu Mantic Linux Kernel still not fix

[Bug 2046372] Re: Potential security issue fixed in 1.1.2, 1.0.3 and 0.103.10

** Changed in: clamav (Ubuntu Mantic) Status: Triaged => Won't Fix ** Changed in: libclamunrar (Ubuntu Mantic) Status: New => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to the bug report. https://bugs.launchpad.net/b

[Bug 2062406] Re: CVE-2024-32462: Sandbox escape via RequestBackground portal and CWE-88

** Changed in: flatpak (Ubuntu Mantic) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2062406 Title: CVE-2024-32462: Sandbox escape via RequestBackground portal

[Bug 2067445] Re: update to 126.0.01

References: https://ubuntu.com/security/notices/USN-6779-2 Package Information: https://launchpad.net/ubuntu/+source/firefox/126.0.1+build1-0ubuntu0.20.04.1 ** Changed in: firefox (Ubuntu) Status: New => Fix Released ** Changed in: firefox (Ubuntu Focal) Status: New => Fix Rele

[Bug 2067445] [NEW] update to 126.0.01

Public bug reported: https://www.mozilla.org/en-US/firefox/126.0.1/releasenotes/ ** Affects: firefox (Ubuntu) Importance: Undecided Assignee: Nishit Majithia (0xnishit) Status: New ** Affects: firefox (Ubuntu Focal) Importance: Undecided Status: New ** Also

[Bug 2064553] Re: Update to 125.0.3

References: https://ubuntu.com/security/notices/USN-6747-2 Package Information: https://launchpad.net/ubuntu/+source/firefox/125.0.3+build1-0ubuntu0.20.04.1 ** Changed in: firefox (Ubuntu) Status: New => Fix Released ** Changed in: firefox (Ubuntu Focal) Status: New => Fix Rel

[Bug 2064553] [NEW] Update to 125.0.3

Public bug reported: https://www.mozilla.org/en-US/firefox/125.0.3/releasenotes/ ** Affects: firefox (Ubuntu) Importance: Undecided Assignee: Nishit Majithia (0xnishit) Status: New ** Affects: firefox (Ubuntu Focal) Importance: Undecided Assignee: Nishit Majithia

[Bug 2056258] Re: Update to 123.0.1

USN-6649-2 Package Information: https://launchpad.net/ubuntu/+source/firefox/123.0.1+build1-0ubuntu0.20.04.1 ** Changed in: firefox (Ubuntu) Status: New => Fix Released ** Changed in: firefox (Ubuntu Focal) Status: New => Fix Released -- You received this bug notification becaus

[Bug 2056258] [NEW] Update to 123.0.1

Public bug reported: https://www.mozilla.org/en-US/firefox/123.0.1/releasenotes/ ** Affects: firefox (Ubuntu) Importance: Undecided Assignee: Nishit Majithia (0xnishit) Status: New ** Affects: firefox (Ubuntu Focal) Importance: Undecided Assignee: Nishit Majithia