1. Home
  2. OS

Subcategories

  • 1 Topics
    1 Posts
    peat_psuwitP
    Vulnerability During the periodic scanning of the local media, gst-hybris gets loaded by Gstreamer, a media framework, to perform HW-accelerated video decoding. gst-hybris expected the rendering element ("sink") to be HW-accelerated as well, but media scanning does not use HW-accelerated rendering. This results in memory corruption, which could potentially be exploited by a specifically-crafted media. Info The pipeline constructing process of Gstreamer is dynamic; it can automatically pick the demuxer, decoder(s), and sink(s) based on the file type, file content, and component's capability. In this case, Gstreamer picks gst-hybris' HW-accelerated decoder as the decoder, but "fakesink" as the sink (as the scanner only wants to know certain metadata). Now, to perform HW-accelerated video rendering, gst-hybris has a dedicated sink which co-operate with the decoder in order to pass decoded video frame without copying the memory. When Gstreamer connects the decoder with the sink, the decoder can access the sink to perform necessary co-ordination. However, the decoder forgot to check if the sink it accesses is the one it can co-operate, which results in the code writing into the memory it's not supposed to access. In order for this to be exploited, the video has to be on the device, which subsequently leads to it being scanned. Video playback in other cases is not affected, as they always use HW-accelerated video rendering. CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') Severity: Medium Affected versions Affected versions: All Ubuntu Touch versions up to and including 20.04 OTA-10, 24.04-1.0. Fixed in versions: Ubuntu Touch 20.04 OTA-11 and 24.04-1.1. Solution Starting in Ubuntu Touch 20.04 OTA-11 and 24.04-1.1, gst-hybris checks the type of the sink before casting to the expected type. Fixed in: https://gitlab.com/ubports/development/core/hybris-support/gst-hybris/-/commit/58bb0e1ba2169bd85ac0930bf074ab865553356f Recommendations Update your device to Ubuntu Touch 20.04 OTA-11, 24.04-1.1 or newer. Do not download videos from untrusted sources. Timeline The issue was discovered on 30 September 2025, during a debugging of another issue. The issue was discovered before the release of Ubuntu Touch 24.04-1.0, but we did not manage to work it through and fix it in time for that release. Ubuntu Touch 20.04 OTA-11 and 24.04-1.1 was released on 1 December 2025, coordinated with the publication of this advisory. Credit Reported-by: Ratchanan Srirattanamet Patched-by: Ratchanan Sirrattanamet

  • This forum is all about the ongoing efforts to upgrade UT to the 20.04 codebase of Ubuntu.

    132 Topics
    954 Posts
    A
    @Moem @Luksus This is good news as this was a good phone with UBPorts
Log in to post
Load new posts
  • T

    Extra functions for fingerprint sensor?

    3
    0 Votes
    3 Posts
    638 Views
    AppLeeA
    Hi @taiga-woods Maybe something like Launcher Modular (in the Open Store) can be used to do something like this. Not sure as I don't use it but it might be worth investigating.
  • T

    This topic is deleted!

    1
    0 Votes
    1 Posts
    1 Views
    No one has replied
  • Beta BreakB

    Development Planning 2023 ~ lets take over the world :)

    18
    8 Votes
    18 Posts
    4k Views
    H
    Happy to read about background service for clickable apps. Will focal upgrades improve bluetooth experience?
  • L

    Shake for flashlight

    Moved suggestion feature
    12
    1 Votes
    12 Posts
    2k Views
    L
    @kimo said in Shake for flashlight: @phoenixlandpirat flashlight has been fixed and it is working on p3a xl dev I changed the update source to development and yes, it works thanks
  • developerbaymanD

    enableing hardware acceleration?

    4
    0 Votes
    4 Posts
    1k Views
    developerbaymanD
    @emphrath yes i see this now lol had to take a few days i bricked my phone .....i just dont see why i cant switch desktop managers its just nor fair! lol
  • L

    This topic is deleted!

    1
    0 Votes
    1 Posts
    3 Views
    No one has replied
  • T

    Please add a setting for the system clock format

    Moved
    7
    0 Votes
    7 Posts
    1k Views
    KenedaK
    @triguy You can open an issue on ubports system setting app git if not already done by another user. https://gitlab.com/ubports/development/core/lomiri-system-settings/-/issues
  • R

    Ubuntu Pro

    17
    0 Votes
    17 Posts
    3k Views
    flohackF
    @emphrath we cannot take packages from Debian instead of Ubuntu. Thats not how distro packaging works
  • lduboeufL

    Contact custom incoming Call/Notification sound

    8
    8 Votes
    8 Posts
    1k Views
    lduboeufL
    Hi, some news, So the feature was working fine on my device!. But as we finally reverted back the new contact backend, it is not possible anymore... Adding such possibility in current contact backend is not straight forward, and not sure if i should spend days on a backend that will be uncertain for the future.
  • T

    feature request - starting camera by shaking phone (when sleeping as well)

    Moved
    2
    0 Votes
    2 Posts
    322 Views
    No one has replied
  • 7

    Swype keyboard for UT?

    Moved
    12
    0 Votes
    12 Posts
    2k Views
    P
    Here's an old thread about this: https://forums.ubports.com/topic/3844/swipe-style-keyboard/19 It seems some relevant technology might have been developed for SailfishOS, but nothing became of that discussion. I remember seeing someone demonstrating a swype keyboard for Phosh at one point, but I cannot find it anywhere.
  • flohackF

    OTA-24 Call for Testing Companion Post

    7
    3 Votes
    7 Posts
    1k Views
    arubislanderA
    Please remember this thread is about testing the release candidate channel for what will become OTA-24. All other results on any other channel are off topic here, but feel free to start another thread to discuss those if needed. And also please keep the discussion in this thread to differences / regressions as compared to OTA-23. Any bugs already present in OTA-23 and still present in OTA-24 but not on the OTA-24 tracker, are likewise off topic.
  • flohackF

    OTA-24 Devel/RC potential contacts data loss

    4
    2 Votes
    4 Posts
    896 Views
    flohackF
    @domubpkm Hello, this RC is the final candidate for OTA-24
  • E

    App grouping

    Moved
    9
    2 Votes
    9 Posts
    1k Views
    JakubJ
    @josele13 said in App grouping: I think Waydroid apps should be in Waydroid, not put android apps launchers in the UT launcher I agree with you, or there should be an option when installing Waydroid for not adding Waydroid apps into UT launcher. @emphrath said in App grouping: Add to this the relics of Waydroid uninstalled apps and you're in for a burning hell of scrolling everytime you want to do sth slightly unusual You can manually delete uninstalled (or currently installed) apps from launcher by finding its .desktop files in /home/phablet/.local/share/applications, though some app come back into launcher at next launch of Waydroid for some reason.
  • H

    Changing bluetooth settings

    4
    0 Votes
    4 Posts
    676 Views
    H
    @homer hey all thanks foe your suggestions. Tuens out, I did not do the pairing correctly on the headset. Still, I have headphones and headset which don`t work with the phone, but another set which work. I have no idea why. My idea was therefore to try and change some bluetooth settings (which I now know is not possible) to fix the connection.
  • M

    Changes/Fixes/Improvements?

    7
    0 Votes
    7 Posts
    855 Views
    M
    @moem Thanks, that should have been obvious, seeing as I must handle the device, I missed it. Basically to me, that's same as opening the app as I must clean my hands, handle the device. Regardless, a must have has been implemented for me!
  • mardyM

    FM radio: testing instructions and feedback

    fm-radio
    26
    6 Votes
    26 Posts
    9k Views
    D
    @mardy The Ukw radio for Ubuntu Touch seems to be set too high in sensitivity. There should be an option somewhere where you can change this. So some stations that are below the level do not run at all. I live in the countryside so it would be good to keep the squelch of the app as low as possible. I would recommend the value 10 if the app can do that.
  • H

    Privacy on UT

    Moved
    5
    0 Votes
    5 Posts
    1k Views
    D
    I'm not commenting on whether it's real or not (not the skills for) but only drawing attention to the supposed issue (security flaw) I saw that day : https://github.com/ubports/ubuntu-touch/issues/2057 . See @dobey answer at the end which is rather reassuring.
  • E

    Phoronix: Mir 2.9 w/XDG-Shell; Add'l Extensions: Any Impact on UBPorts?

    4
    0 Votes
    4 Posts
    681 Views
    E
    @alan_g Thanks for that! That answer satiated my curiosity for sure - but its unfortunate there are not enough volunteers! The only thing I can really volunteer to do is outreach - looking for volunteers on UBPorts-supported device forums on XDA, etc. Is there anything a user/fan like me can do to help?
  • D

    VOLTE (Voice over Long Term Evolution)

    30
    -1 Votes
    30 Posts
    11k Views
    R
    @keneda @AppLee I guess abbreviated my statement a little too much leading to the impression I was a bit dimwitted. What I should have added was: "if your carrier kicks you off for lack of VoLTE support on your device -- and they did, then you don't get data or SMS either because you don't have service at all . . .because they kicked you off. Then you're really in a bind." Fortunately, I realized that I had an alternate phone I could put the SIM in to get the telegram code by SMS to the number I had originally used to register.