Back

Ubuntu 26.04 LTS Vulnerability in Little CMS

Severity: Medium (Score: 45.9)

Sources: Linuxsecurity, Ubuntu

Summary

A vulnerability in the Little CMS color management library affects Ubuntu 26.04 LTS and 25.10. Discovered on April 30, 2026, the flaw allows attackers to crash the library by using specially crafted ICC profiles, leading to a denial of service. The issue is tracked as CVE-2026-42798. Users are advised to update to the patched versions of liblcms2-2 to mitigate the risk. The vulnerability does not appear to have been actively exploited at this time. Standard system updates will address the issue for affected systems. Ubuntu Pro offers extended security coverage for users with multiple machines. The vulnerability highlights the importance of regular updates to maintain system security. Key Points: • A vulnerability in Little CMS affects Ubuntu 26.04 LTS and 25.10. • The flaw allows denial of service via specially crafted ICC profiles. • Users should update to the latest liblcms2-2 packages to mitigate risks.

Key Entities

  • DDoS (attack_type)
  • CVE-2026-42798 (cve)
  • Ubuntu (company)
  • Little CMS (vulnerability)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed