New CVEs affecting packages used to build upstream based rocks have been created in the Ubuntu CVE tracker:
* libssh: CVE-2025-4877, CVE-2025-4878, CVE-2025-5351, CVE-2025-5372, CVE-2025-5449, CVE-2025-5987 Please review your rock to understand if it is affected by these CVEs. Thank you for your rock and for attending to this matter. References: https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2025-4877 https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2025-4878 https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2025-5351 https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2025-5372 https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2025-5449 https://git.launchpad.net/ubuntu-cve-tracker/tree/active/CVE-2025-5987 -- Mailing list: https://launchpad.net/~ubuntu-docker-images Post to : ubuntu-docker-images@lists.launchpad.net Unsubscribe : https://launchpad.net/~ubuntu-docker-images More help : https://help.launchpad.net/ListHelp
