[USN-7545-1] Apport vulnerability
[USN-7530-1] ADOdb vulnerability
[USN-7545-1] Apport vulnerability
-=========================================================================
Ubuntu Security Notice USN-7545-1
May 29, 2025
apport vulnerability
=========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 25.04
- Ubuntu 24.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Summary:
Apport could be made to leak sensitive information.
Software Description:
- apport: automatically generate crash reports for debugging
Details:
Qualys discovered that Apport incorrectly handled metadata when
processing application crashes. An attacker could possibly use this issue
to leak sensitive information.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.04
apport 2.32.0-0ubuntu5.1
python3-apport 2.32.0-0ubuntu5.1
Ubuntu 24.10
apport 2.30.0-0ubuntu4.3
python3-apport 2.30.0-0ubuntu4.3
Ubuntu 24.04 LTS
apport 2.28.1-0ubuntu3.6
python3-apport 2.28.1-0ubuntu3.6
Ubuntu 22.04 LTS
apport 2.20.11-0ubuntu82.7
python3-apport 2.20.11-0ubuntu82.7
Ubuntu 20.04 LTS
apport 2.20.11-0ubuntu27.28
python3-apport 2.20.11-0ubuntu27.28
Ubuntu 18.04 LTS
apport 2.20.9-0ubuntu7.29+esm1
Available with Ubuntu Pro
python-apport 2.20.9-0ubuntu7.29+esm1
Available with Ubuntu Pro
python3-apport 2.20.9-0ubuntu7.29+esm1
Available with Ubuntu Pro
Ubuntu 16.04 LTS
apport 2.20.1-0ubuntu2.30+esm5
Available with Ubuntu Pro
python-apport 2.20.1-0ubuntu2.30+esm5
Available with Ubuntu Pro
python3-apport 2.20.1-0ubuntu2.30+esm5
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7545-1
CVE-2025-5054
Package Information:
https://launchpad.net/ubuntu/+source/apport/2.32.0-0ubuntu5.1
https://launchpad.net/ubuntu/+source/apport/2.30.0-0ubuntu4.3
https://launchpad.net/ubuntu/+source/apport/2.28.1-0ubuntu3.6
https://launchpad.net/ubuntu/+source/apport/2.20.11-0ubuntu82.7
https://launchpad.net/ubuntu/+source/apport/2.20.11-0ubuntu27.28
-
[USN-7530-1] ADOdb vulnerability
==========================================================================
Ubuntu Security Notice USN-7530-1
May 29, 2025
libphp-adodb vulnerability
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 25.04
- Ubuntu 24.10
Summary:
ADOdb could be made to crash or run programs if it received
specially crafted input.
Software Description:
- libphp-adodb: PHP database abstraction layer library
Details:
It was discovered that ADOdb incorrectly handled SQL input. A remote
attacker could use this issue to execute arbitrary SQL commands.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 25.04
libphp-adodb 5.22.8-0.1ubuntu0.1
Ubuntu 24.10
libphp-adodb 5.22.7-0.1ubuntu0.1
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7530-1
CVE-2025-46337
Package Information:
https://launchpad.net/ubuntu/+source/libphp-adodb/5.22.8-0.1ubuntu0.1
https://launchpad.net/ubuntu/+source/libphp-adodb/5.22.7-0.1ubuntu0.1
