[ubuntu/questing-security] glibc 2.42-0ubuntu3.1 (Accepted)
Nishit Majithia
nishit.majithia at canonical.com
Tue Feb 3 03:27:26 UTC 2026
glibc (2.42-0ubuntu3.1) questing-security; urgency=medium
* SECURITY UPDATE: use-after-free in wordexp_t fields
- debian/patches/CVE-2025-15281.patch: posix: Reset wordexp_t fields
with WRDE_REUSE
- CVE-2025-15281
* SECURITY UPDATE: integer overflow in memalign
- debian/patches/CVE-2026-0861.patch: memalign: reinstate alignment
overflow check
- CVE-2026-0861
* SECURITY UPDATE: memory leak in NSS DNS
- debian/patches/CVE-2026-0915.patch: resolv: Fix NSS DNS backend for
getnetbyaddr
- CVE-2026-0915
Date: 2026-01-30 12:06:11.780855+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
https://launchpad.net/ubuntu/+source/glibc/2.42-0ubuntu3.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Questing-changes
mailing list