Ubuntu 7150 Published by

Ubuntu published nine security advisories on July 14, 2026, to address critical vulnerabilities in httplib2, MariaDB, alsa-lib, OpenVPN, GnuTLS, Dnsmasq, Vim, libheif, and Wget. The updated patches fix flaws that could enable remote code execution, authentication bypass, denial of service, and data leakage across affected systems.

[USN-8537-1] httplib2 vulnerability
[USN-8536-1] MariaDB vulnerabilities
[USN-8538-1] alsa-lib vulnerability
[USN-8540-1] OpenVPN vulnerabilities
[USN-8539-1] GnuTLS vulnerabilities
[USN-8542-1] Dnsmasq vulnerabilities
[USN-8541-1] Vim vulnerabilities
[USN-8526-2] libheif vulnerabilities
[USN-8543-1] Wget vulnerabilities




[USN-8537-1] httplib2 vulnerability


==========================================================================
Ubuntu Security Notice USN-8537-1
July 14, 2026

python-httplib2 vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS

Summary:

httplib2 could be made to crash if it received specially crafted network
traffic.

Software Description:
- python-httplib2: comprehensive HTTP client library written for Python3

Details:

It was discovered that httplib2 performed unbounded decompression of HTTP
response bodies when the server used gzip or deflate Content-Encoding. A
remote attacker could possibly use this issue to cause httplib2 to use
excessive resources, leading to a denial of service.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
python3-httplib2 0.22.0-1ubuntu0.1

Ubuntu 24.04 LTS
python3-httplib2 0.20.4-3ubuntu0.1

Ubuntu 22.04 LTS
python3-httplib2 0.20.2-2ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8537-1
CVE-2026-59939

Package Information:
https://launchpad.net/ubuntu/+source/python-httplib2/0.22.0-1ubuntu0.1
https://launchpad.net/ubuntu/+source/python-httplib2/0.20.4-3ubuntu0.1
https://launchpad.net/ubuntu/+source/python-httplib2/0.20.2-2ubuntu0.1



[USN-8536-1] MariaDB vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8536-1
July 14, 2026

mariadb vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS

Summary:

Several security issues were fixed in MariaDB.

Software Description:
- mariadb: MariaDB database

Details:

It was discovered that MariaDB did not properly validate parameters
supplied by a joiner node during a State Snapshot Transfer using the
mariabackup method. An attacker could possibly use this issue to execute
arbitrary shell commands on the donor node. (CVE-2026-44168)

It was discovered that MariaDB did not properly enforce the SHOW CREATE
ROUTINE privilege when a user obtained access to a stored routine via a
role. An authenticated user could possibly use this issue to obtain
sensitive information. (CVE-2026-44169)

It was discovered that MariaDB's mbstream utility did not properly validate
paths when unpacking archives. An attacker could possibly use this issue to
write files outside of the intended target directory. (CVE-2026-44171)

It was discovered that MariaDB's mysql_real_escape_string() function
incorrectly handled the big5 character set. An attacker could possibly use
this issue to perform SQL injection attacks. (CVE-2026-44172)

It was discovered that MariaDB did not properly check the FILE privilege
when the FROM clause of a SELECT ... INTO OUTFILE or SELECT ... INTO
DUMPFILE statement contained only subqueries. An authenticated user could
possibly use this issue to write files to unintended locations.
(CVE-2026-44173)

It was discovered that MariaDB did not properly validate parameters
supplied by a joiner node during a State Snapshot Transfer using the rsync
method. An attacker could possibly use this issue to execute arbitrary
shell commands on the donor node. (CVE-2026-48163)

It was discovered that MariaDB allowed a high-privileged user to set
certain Galera system variables to values containing shell commands, which
were then executed by the server process. An authenticated user could
possibly use this issue to execute arbitrary shell commands.
(CVE-2026-48165)

It was discovered that MariaDB executed shell commands embedded in the name
of a joiner node when wsrep_notify_cmd was enabled. A remote attacker could
possibly use this issue to execute arbitrary shell commands.
(CVE-2026-49261)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
mariadb-server 1:11.8.6-5ubuntu0.1

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8536-1
CVE-2026-44168, CVE-2026-44169, CVE-2026-44171, CVE-2026-44172,
CVE-2026-44173, CVE-2026-48163, CVE-2026-48165, CVE-2026-49261

Package Information:
https://launchpad.net/ubuntu/+source/mariadb/1:11.8.6-5ubuntu0.1



[USN-8538-1] alsa-lib vulnerability


==========================================================================
Ubuntu Security Notice USN-8538-1
July 14, 2026

alsa-lib vulnerability
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS

Summary:

alsa-lib could be made to crash or run programs as your login if it opened
a specially crafted file.

Software Description:
- alsa-lib: shared library for ALSA applications

Details:

It was discovered that alsa-lib incorrectly handled certain ALSA
configuration text. An attacker could use this issue to cause alsa-lib to
crash, resulting in a denial of service, or possibly execute arbitrary
code.

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
libasound2t64 1.2.15.3-1ubuntu1.1

Ubuntu 24.04 LTS
libasound2t64 1.2.11-1ubuntu0.3

Ubuntu 22.04 LTS
libasound2 1.2.6.1-1ubuntu1.2

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8538-1
CVE-2026-56109

Package Information:
https://launchpad.net/ubuntu/+source/alsa-lib/1.2.15.3-1ubuntu1.1
https://launchpad.net/ubuntu/+source/alsa-lib/1.2.11-1ubuntu0.3
https://launchpad.net/ubuntu/+source/alsa-lib/1.2.6.1-1ubuntu1.2



[USN-8540-1] OpenVPN vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8540-1
July 14, 2026

openvpn vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS

Summary:

Several security issues were fixed in OpenVPN.

Software Description:
- openvpn: virtual private network software

Details:

It was discovered that OpenVPN had a 1-byte buffer overrun when handling
NTLMv2 proxy responses. An attacker could use this issue to cause a denial
of service or possibly execute arbitrary code. This issue only affected
Ubuntu 24.04 LTS and Ubuntu 26.04 LTS. (CVE-2026-11771)

It was discovered that OpenVPN incorrectly handled metadata when extracting
tls-crypt-v2 client keys. An attacker could possibly use this issue to
obtain sensitive information. (CVE-2026-12932)

It was discovered that OpenVPN had a use-after-free in the ack_write_buf
handling. An attacker could use this issue to cause OpenVPN to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2026-12996)

It was discovered that OpenVPN had a use-after-free in the tls_wrap_reneg
handling. An attacker could use this issue to cause OpenVPN to crash,
resulting in a denial of service, or possibly execute arbitrary code. This
issue only affected Ubuntu 24.04 LTS and Ubuntu 26.04 LTS. (CVE-2026-13117)

It was discovered that OpenVPN incorrectly validated authentication tokens
when external authentication was enabled. A remote attacker could possibly
use this issue to cause OpenVPN to crash, resulting in a denial of service.
This issue only affected Ubuntu 24.04 LTS and Ubuntu 26.04 LTS.
(CVE-2026-13122)

It was discovered that OpenVPN had a memory leak when handling tls-crypt-v2
client keys. A remote attacker with a valid tls-crypt-v2 client key could
possibly use this issue to cause OpenVPN to consume excessive resources,
leading to a denial of service. (CVE-2026-13698)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
openvpn 2.7.0-1ubuntu1.2

Ubuntu 24.04 LTS
openvpn 2.6.19-0ubuntu0.24.04.3

Ubuntu 22.04 LTS
openvpn 2.5.11-0ubuntu0.22.04.4

After a standard system update you need to restart OpenVPN to make all
the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8540-1
CVE-2026-11771, CVE-2026-12932, CVE-2026-12996, CVE-2026-13117,
CVE-2026-13122, CVE-2026-13698

Package Information:
https://launchpad.net/ubuntu/+source/openvpn/2.7.0-1ubuntu1.2
https://launchpad.net/ubuntu/+source/openvpn/2.6.19-0ubuntu0.24.04.3
https://launchpad.net/ubuntu/+source/openvpn/2.5.11-0ubuntu0.22.04.4



[USN-8539-1] GnuTLS vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8539-1
July 14, 2026

gnutls28 vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in GnuTLS.

Software Description:
- gnutls28: GNU TLS library

Details:

Haruto Kimura discovered that GnuTLS did not properly apply permitted
name constraints in certain certificate validation paths. A remote
attacker could possibly use this issue to bypass certificate validation,
leading to a machine-in-the-middle attack. (CVE-2026-42011)

Oleh Konko discovered that GnuTLS incorrectly fell back to Common Name
checks for certain URI and SRV subject alternative names. A remote
attacker could possibly use this issue to bypass certificate validation,
leading to a machine-in-the-middle attack. (CVE-2026-42012)

Haruto Kimura and Joshua Rogers discovered that GnuTLS incorrectly fell
back to Common Name checks when subject alternative names were
oversized. A remote attacker could possibly use this issue to bypass
certificate validation, leading to a machine-in-the-middle attack.
(CVE-2026-42013)

Luigino Camastra and Joshua Rogers discovered that GnuTLS had a
use-after-free issue when changing PKCS#11 token security officer PINs
in certain cases. An attacker could possibly use this issue to cause
GnuTLS to crash, resulting in a denial of service, or execute arbitrary
code. (CVE-2026-42014)

Zou Dikai discovered that GnuTLS did not properly validate PKCS#12 bag
sizes in certain cases. An attacker could possibly use this issue to
cause GnuTLS to crash, resulting in a denial of service, or execute
arbitrary code. (CVE-2026-42015)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 20.04 LTS
libgnutls30 3.6.13-2ubuntu1.12+esm3
Available with Ubuntu Pro

Ubuntu 18.04 LTS
libgnutls30 3.5.18-1ubuntu1.6+esm4
Available with Ubuntu Pro

Ubuntu 16.04 LTS
libgnutls30 3.4.10-4ubuntu1.9+esm4
Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8539-1
CVE-2026-42011, CVE-2026-42012, CVE-2026-42013, CVE-2026-42014,
CVE-2026-42015



[USN-8542-1] Dnsmasq vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8542-1
July 14, 2026

dnsmasq vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS

Summary:

Several security issues were fixed in Dnsmasq.

Software Description:
- dnsmasq: Small caching DNS proxy and DHCP/TFTP server

Details:

Yiwei Hou discovered that Dnsmasq incorrectly handled logging of DS or
DNSKEY. A remote attacker could possibly use this issue to cause a
denial of service. (CVE-2026-12725)

It was discovered that Dnsmasq incorrectly validated the length of
fixed-length DNS record fields when parsing NS section records. A remote
attacker could possibly use this issue to cause Dnsmasq to read out of
bounds, possibly exposing sensitive information. (CVE-2026-12969)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
dnsmasq 2.92-1ubuntu0.4
dnsmasq-base 2.92-1ubuntu0.4
dnsmasq-base-lua 2.92-1ubuntu0.4
dnsmasq-utils 2.92-1ubuntu0.4

Ubuntu 24.04 LTS
dnsmasq 2.90-2ubuntu0.4
dnsmasq-base 2.90-2ubuntu0.4
dnsmasq-base-lua 2.90-2ubuntu0.4
dnsmasq-utils 2.90-2ubuntu0.4

Ubuntu 22.04 LTS
dnsmasq 2.90-0ubuntu0.22.04.4
dnsmasq-base 2.90-0ubuntu0.22.04.4
dnsmasq-base-lua 2.90-0ubuntu0.22.04.4
dnsmasq-utils 2.90-0ubuntu0.22.04.4

Ubuntu 20.04 LTS
dnsmasq 2.90-0ubuntu0.20.04.1+esm3
Available with Ubuntu Pro
dnsmasq-base 2.90-0ubuntu0.20.04.1+esm3
Available with Ubuntu Pro
dnsmasq-base-lua 2.90-0ubuntu0.20.04.1+esm3
Available with Ubuntu Pro
dnsmasq-utils 2.90-0ubuntu0.20.04.1+esm3
Available with Ubuntu Pro

Ubuntu 18.04 LTS
dnsmasq 2.90-0ubuntu0.18.04.1+esm4
Available with Ubuntu Pro
dnsmasq-base 2.90-0ubuntu0.18.04.1+esm4
Available with Ubuntu Pro
dnsmasq-base-lua 2.90-0ubuntu0.18.04.1+esm4
Available with Ubuntu Pro
dnsmasq-utils 2.90-0ubuntu0.18.04.1+esm4
Available with Ubuntu Pro

Ubuntu 16.04 LTS
dnsmasq 2.90-0ubuntu0.16.04.1+esm4
Available with Ubuntu Pro
dnsmasq-base 2.90-0ubuntu0.16.04.1+esm4
Available with Ubuntu Pro
dnsmasq-base-lua 2.90-0ubuntu0.16.04.1+esm4
Available with Ubuntu Pro
dnsmasq-utils 2.90-0ubuntu0.16.04.1+esm4
Available with Ubuntu Pro

After a standard system update you need to restart dnsmasq to make
all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8542-1
CVE-2026-12725, CVE-2026-12969

Package Information:
https://launchpad.net/ubuntu/+source/dnsmasq/2.92-1ubuntu0.4
https://launchpad.net/ubuntu/+source/dnsmasq/2.90-2ubuntu0.4
https://launchpad.net/ubuntu/+source/dnsmasq/2.90-0ubuntu0.22.04.4



[USN-8541-1] Vim vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8541-1
July 14, 2026

vim vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in Vim.

Software Description:
- vim: Vi IMproved - enhanced vi editor

Details:

Hirohito Higashi discovered that Vim incorrectly escaped class or trait
names when performing PHP omni-completion. An attacker could possibly
use this issue to trick a user into opening a specially crafted PHP
file and executing arbitrary commands. This issue only affected Ubuntu
22.04 LTS, Ubuntu 24.04 LTS, and Ubuntu 26.04 LTS. (CVE-2026-59856)

Hirohito Higashi discovered that Vim incorrectly handled sound-folding
of certain words when using a spell file. An attacker could possibly
use this issue to cause Vim to crash, resulting in a denial of service.
(CVE-2026-59857)

It was discovered that Vim incorrectly escaped certain tags file fields
when performing C omni-completion. An attacker could possibly use this
issue to trick a user into opening a specially crafted file and
executing arbitrary commands. (CVE-2026-59858)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
vim 2:9.1.2141-1ubuntu4.7
vim-common 2:9.1.2141-1ubuntu4.7
vim-gtk3 2:9.1.2141-1ubuntu4.7
vim-gui-common 2:9.1.2141-1ubuntu4.7
vim-motif 2:9.1.2141-1ubuntu4.7
vim-nox 2:9.1.2141-1ubuntu4.7
vim-runtime 2:9.1.2141-1ubuntu4.7
vim-tiny 2:9.1.2141-1ubuntu4.7
xxd 2:9.1.2141-1ubuntu4.7

Ubuntu 24.04 LTS
vim 2:9.1.0016-1ubuntu7.18
vim-athena 2:9.1.0016-1ubuntu7.18
vim-common 2:9.1.0016-1ubuntu7.18
vim-gtk3 2:9.1.0016-1ubuntu7.18
vim-gui-common 2:9.1.0016-1ubuntu7.18
vim-motif 2:9.1.0016-1ubuntu7.18
vim-nox 2:9.1.0016-1ubuntu7.18
vim-runtime 2:9.1.0016-1ubuntu7.18
vim-tiny 2:9.1.0016-1ubuntu7.18
xxd 2:9.1.0016-1ubuntu7.18

Ubuntu 22.04 LTS
vim 2:8.2.3995-1ubuntu2.34
vim-athena 2:8.2.3995-1ubuntu2.34
vim-common 2:8.2.3995-1ubuntu2.34
vim-gtk 2:8.2.3995-1ubuntu2.34
vim-gtk3 2:8.2.3995-1ubuntu2.34
vim-gui-common 2:8.2.3995-1ubuntu2.34
vim-nox 2:8.2.3995-1ubuntu2.34
vim-runtime 2:8.2.3995-1ubuntu2.34
vim-tiny 2:8.2.3995-1ubuntu2.34
xxd 2:8.2.3995-1ubuntu2.34

Ubuntu 20.04 LTS
vim 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-athena 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-common 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-gtk 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-gtk3 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-gui-common 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-nox 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-runtime 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
vim-tiny 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro
xxd 2:8.1.2269-1ubuntu5.32+esm10
Available with Ubuntu Pro

Ubuntu 18.04 LTS
vim 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-athena 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-common 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-gnome 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-gtk 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-gtk3 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-gui-common 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-nox 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-runtime 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
vim-tiny 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro
xxd 2:8.0.1453-1ubuntu1.13+esm22
Available with Ubuntu Pro

Ubuntu 16.04 LTS
vim 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-athena 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-athena-py2 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-common 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gnome 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gnome-py2 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gtk 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gtk-py2 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gtk3 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gtk3-py2 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-gui-common 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-nox 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-nox-py2 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-runtime 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro
vim-tiny 2:7.4.1689-3ubuntu1.5+esm37
Available with Ubuntu Pro

Ubuntu 14.04 LTS
vim 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-athena 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-common 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-gnome 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-gtk 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-gui-common 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-lesstif 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-nox 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-runtime 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro
vim-tiny 2:7.4.052-1ubuntu3.1+esm31
Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8541-1
CVE-2026-59856, CVE-2026-59857, CVE-2026-59858

Package Information:
https://launchpad.net/ubuntu/+source/vim/2:9.1.2141-1ubuntu4.7
https://launchpad.net/ubuntu/+source/vim/2:9.1.0016-1ubuntu7.18
https://launchpad.net/ubuntu/+source/vim/2:8.2.3995-1ubuntu2.34



[USN-8526-2] libheif vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8526-2
July 14, 2026

libheif vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 24.04 LTS

Summary:

Several security issues were fixed in libheif.

Software Description:
- libheif: An ISO/IEC 23008-12:2017 HEIF and AVIF file format decoder and encoder

Details:

USN-8526-1 fixed vulnerabilities in libheif. This update provides the
corresponding updates for CVE-2026-47709 and CVE-2026-47714 in
Ubuntu 24.04 LTS.

Original advisory details:

Junyi Liu discovered that libheif had a null pointer dereference in its
image tiling interface. An attacker could possibly use this issue to
cause a denial of service. (CVE-2026-47709)

Calvin Young and Enoch Chow discovered that libheif had an integer
overflow in its inline mask size calculation. An attacker could
possibly use this issue to cause a denial of service or obtain sensitive
information. (CVE-2026-47714)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 24.04 LTS
heif-gdk-pixbuf 1.17.6-1ubuntu4.6
heif-thumbnailer 1.17.6-1ubuntu4.6
libheif-dev 1.17.6-1ubuntu4.6
libheif-plugin-aomdec 1.17.6-1ubuntu4.6
libheif-plugin-aomenc 1.17.6-1ubuntu4.6
libheif-plugin-dav1d 1.17.6-1ubuntu4.6
libheif-plugin-ffmpegdec 1.17.6-1ubuntu4.6
libheif-plugin-j2kdec 1.17.6-1ubuntu4.6
libheif-plugin-j2kenc 1.17.6-1ubuntu4.6
libheif-plugin-jpegdec 1.17.6-1ubuntu4.6
libheif-plugin-jpegenc 1.17.6-1ubuntu4.6
libheif-plugin-libde265 1.17.6-1ubuntu4.6
libheif-plugin-rav1e 1.17.6-1ubuntu4.6
libheif-plugin-svtenc 1.17.6-1ubuntu4.6
libheif-plugin-x265 1.17.6-1ubuntu4.6
libheif1 1.17.6-1ubuntu4.6

In general, a standard system update will make all the necessary
changes.

References:
https://ubuntu.com/security/notices/USN-8526-2
https://ubuntu.com/security/notices/USN-8526-1
CVE-2026-47709, CVE-2026-47714

Package Information:
https://launchpad.net/ubuntu/+source/libheif/1.17.6-1ubuntu4.6



[USN-8543-1] Wget vulnerabilities


==========================================================================
Ubuntu Security Notice USN-8543-1
July 14, 2026

wget vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
- Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in Wget.

Software Description:
- wget: retrieves files from the web

Details:

It was discovered that Wget mishandled semicolons in the userinfo
subcomponent of a URL. A remote attacker could possibly use this issue
to trick a user into connecting to a different host than intended. This
issue only affected Ubuntu 14.04 LTS. (CVE-2024-38428)

It was discovered that Wget incorrectly handled Metalink documents
containing a whitespace-only URL. A remote attacker could possibly use
this issue to cause a denial of service. This issue only affected Ubuntu
18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, and Ubuntu
26.04 LTS. (CVE-2026-58469)

It was discovered that Wget incorrectly handled Content-Range header
values, leading to an integer overflow. A remote attacker could
possibly use this issue to cause download desynchronization.
(CVE-2026-58470)

It was discovered that Wget incorrectly handled character set
conversion of server-supplied filenames. A remote attacker could possibly
use this issue to cause a denial of service or possibly execute arbitrary
code. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS,
Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, and Ubuntu 26.04 LTS. (CVE-2026-58471)

It was discovered that Wget incorrectly handled HTML attributes
requiring entity encoding. A remote attacker could possibly use this issue
to cause a denial of service or possibly execute arbitrary code.
(CVE-2026-58472)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
wget 1.25.0-2ubuntu4.2

Ubuntu 24.04 LTS
wget 1.21.4-1ubuntu4.3

Ubuntu 22.04 LTS
wget 1.21.2-2ubuntu1.3

Ubuntu 20.04 LTS
wget 1.20.3-1ubuntu2.1+esm2
Available with Ubuntu Pro

Ubuntu 18.04 LTS
wget 1.19.4-1ubuntu2.2+esm3
Available with Ubuntu Pro

Ubuntu 16.04 LTS
wget 1.17.1-1ubuntu1.5+esm3
Available with Ubuntu Pro

Ubuntu 14.04 LTS
wget 1.15-1ubuntu1.14.04.5+esm2
Available with Ubuntu Pro

In general, a standard system update will make all the necessary changes.

References:
https://ubuntu.com/security/notices/USN-8543-1
CVE-2024-38428, CVE-2026-58469, CVE-2026-58470, CVE-2026-58471,
CVE-2026-58472

Package Information:
https://launchpad.net/ubuntu/+source/wget/1.25.0-2ubuntu4.2
https://launchpad.net/ubuntu/+source/wget/1.21.4-1ubuntu4.3
https://launchpad.net/ubuntu/+source/wget/1.21.2-2ubuntu1.3