{ "summary": { "snap": { "added": [], "removed": [], "diff": [] }, "deb": { "added": [], "removed": [], "diff": [ "gcc-14-base:armhf", "libgcc-s1:armhf", "libgnutls30t64:armhf", "libstdc++6:armhf" ] } }, "diff": { "deb": [ { "name": "gcc-14-base:armhf", "from_version": { "source_package_name": "gcc-14", "source_package_version": "14.2.0-4ubuntu2~24.04", "version": "14.2.0-4ubuntu2~24.04" }, "to_version": { "source_package_name": "gcc-14", "source_package_version": "14.2.0-4ubuntu2~24.04.1", "version": "14.2.0-4ubuntu2~24.04.1" }, "cves": [], "launchpad_bugs_fixed": [ 2101084 ], "changes": [ { "cves": [], "log": [ "", " * d/p/pr118976.diff: Fix memory corruption when executing 256-bit", " Scalable Vector Extensions code on 128-bit CPUs (LP: #2101084).", "" ], "package": "gcc-14", "version": "14.2.0-4ubuntu2~24.04.1", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2101084 ], "author": "Vladimir Petko ", "date": "Fri, 19 Dec 2025 10:36:50 +1300" } ], "notes": null, "is_version_downgrade": false }, { "name": "libgcc-s1:armhf", "from_version": { "source_package_name": "gcc-14", "source_package_version": "14.2.0-4ubuntu2~24.04", "version": "14.2.0-4ubuntu2~24.04" }, "to_version": { "source_package_name": "gcc-14", "source_package_version": "14.2.0-4ubuntu2~24.04.1", "version": "14.2.0-4ubuntu2~24.04.1" }, "cves": [], "launchpad_bugs_fixed": [ 2101084 ], "changes": [ { "cves": [], "log": [ "", " * d/p/pr118976.diff: Fix memory corruption when executing 256-bit", " Scalable Vector Extensions code on 128-bit CPUs (LP: #2101084).", "" ], "package": "gcc-14", "version": "14.2.0-4ubuntu2~24.04.1", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2101084 ], "author": "Vladimir Petko ", "date": "Fri, 19 Dec 2025 10:36:50 +1300" } ], "notes": null, "is_version_downgrade": false }, { "name": "libgnutls30t64:armhf", "from_version": { "source_package_name": "gnutls28", "source_package_version": "3.8.3-1.1ubuntu3.4", "version": "3.8.3-1.1ubuntu3.4" }, "to_version": { "source_package_name": "gnutls28", "source_package_version": "3.8.3-1.1ubuntu3.5", "version": "3.8.3-1.1ubuntu3.5" }, "cves": [ { "cve": "CVE-2025-14831", "url": "https://ubuntu.com/security/CVE-2025-14831", "cve_description": "A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).", "cve_priority": "medium", "cve_public_date": "2026-02-09 15:16:00 UTC" }, { "cve": "CVE-2025-9820", "url": "https://ubuntu.com/security/CVE-2025-9820", "cve_description": "A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.", "cve_priority": "low", "cve_public_date": "2026-01-26 20:16:00 UTC" } ], "launchpad_bugs_fixed": [], "changes": [ { "cves": [ { "cve": "CVE-2025-14831", "url": "https://ubuntu.com/security/CVE-2025-14831", "cve_description": "A flaw was found in GnuTLS. This vulnerability allows a denial of service (DoS) by excessive CPU (Central Processing Unit) and memory consumption via specially crafted malicious certificates containing a large number of name constraints and subject alternative names (SANs).", "cve_priority": "medium", "cve_public_date": "2026-02-09 15:16:00 UTC" }, { "cve": "CVE-2025-9820", "url": "https://ubuntu.com/security/CVE-2025-9820", "cve_description": "A flaw was found in the GnuTLS library, specifically in the gnutls_pkcs11_token_init() function that handles PKCS#11 token initialization. When a token label longer than expected is processed, the function writes past the end of a fixed-size stack buffer. This programming error can cause the application using GnuTLS to crash or, in certain conditions, be exploited for code execution. As a result, systems or applications relying on GnuTLS may be vulnerable to a denial of service or local privilege escalation attacks.", "cve_priority": "low", "cve_public_date": "2026-01-26 20:16:00 UTC" } ], "log": [ "", " * SECURITY UPDATE: DoS via malicious certificates", " - debian/patches/CVE-2025-14831-*.patch: rework processing algorithms", " to exhibit better performance characteristics in", " lib/x509/name_constraints.c, tests/name-constraints-ip.c.", " - CVE-2025-14831", " * SECURITY UPDATE: stack overflow via long token label", " - debian/patches/CVE-2025-9820.patch: avoid stack overwrite when", " initializing a token in lib/pkcs11_write.c, tests/Makefile.am,", " tests/pkcs11/long-label.c.", " - CVE-2025-9820", "" ], "package": "gnutls28", "version": "3.8.3-1.1ubuntu3.5", "urgency": "medium", "distributions": "noble-security", "launchpad_bugs_fixed": [], "author": "Marc Deslauriers ", "date": "Tue, 10 Feb 2026 11:09:12 -0500" } ], "notes": null, "is_version_downgrade": false }, { "name": "libstdc++6:armhf", "from_version": { "source_package_name": "gcc-14", "source_package_version": "14.2.0-4ubuntu2~24.04", "version": "14.2.0-4ubuntu2~24.04" }, "to_version": { "source_package_name": "gcc-14", "source_package_version": "14.2.0-4ubuntu2~24.04.1", "version": "14.2.0-4ubuntu2~24.04.1" }, "cves": [], "launchpad_bugs_fixed": [ 2101084 ], "changes": [ { "cves": [], "log": [ "", " * d/p/pr118976.diff: Fix memory corruption when executing 256-bit", " Scalable Vector Extensions code on 128-bit CPUs (LP: #2101084).", "" ], "package": "gcc-14", "version": "14.2.0-4ubuntu2~24.04.1", "urgency": "medium", "distributions": "noble", "launchpad_bugs_fixed": [ 2101084 ], "author": "Vladimir Petko ", "date": "Fri, 19 Dec 2025 10:36:50 +1300" } ], "notes": null, "is_version_downgrade": false } ], "snap": [] }, "added": { "deb": [], "snap": [] }, "removed": { "deb": [], "snap": [] }, "notes": "Changelog diff for Ubuntu 24.04 noble image from daily image serial 20260216 to 20260217", "from_series": "noble", "to_series": "noble", "from_serial": "20260216", "to_serial": "20260217", "from_manifest_filename": "daily_manifest.previous", "to_manifest_filename": "manifest.current" }