1. Home
  2. OS

Subcategories

  • 2 Topics
    2 Posts
    peat_psuwitP
    Vulnerability During the periodic scanning of the local media, gst-hybris gets loaded by Gstreamer, a media framework, to perform HW-accelerated video decoding. gst-hybris expected the rendering element ("sink") to be HW-accelerated as well, but media scanning does not use HW-accelerated rendering. This results in memory corruption, which could potentially be exploited by a specifically-crafted media. Info The pipeline constructing process of Gstreamer is dynamic; it can automatically pick the demuxer, decoder(s), and sink(s) based on the file type, file content, and component's capability. In this case, Gstreamer picks gst-hybris' HW-accelerated decoder as the decoder, but "fakesink" as the sink (as the scanner only wants to know certain metadata). Now, to perform HW-accelerated video rendering, gst-hybris has a dedicated sink which co-operate with the decoder in order to pass decoded video frame without copying the memory. When Gstreamer connects the decoder with the sink, the decoder can access the sink to perform necessary co-ordination. However, the decoder forgot to check if the sink it accesses is the one it can co-operate, which results in the code writing into the memory it's not supposed to access. In order for this to be exploited, the video has to be on the device, which subsequently leads to it being scanned. Video playback in other cases is not affected, as they always use HW-accelerated video rendering. CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') Severity: Medium Affected versions Affected versions: All Ubuntu Touch versions up to and including 20.04 OTA-10, 24.04-1.0. Fixed in versions: Ubuntu Touch 20.04 OTA-11 and 24.04-1.1. Solution Starting in Ubuntu Touch 20.04 OTA-11 and 24.04-1.1, gst-hybris checks the type of the sink before casting to the expected type. Fixed in: https://gitlab.com/ubports/development/core/hybris-support/gst-hybris/-/commit/58bb0e1ba2169bd85ac0930bf074ab865553356f Recommendations Update your device to Ubuntu Touch 20.04 OTA-11, 24.04-1.1 or newer. Do not download videos from untrusted sources. Timeline The issue was discovered on 30 September 2025, during a debugging of another issue. The issue was discovered before the release of Ubuntu Touch 24.04-1.0, but we did not manage to work it through and fix it in time for that release. Ubuntu Touch 20.04 OTA-11 and 24.04-1.1 was released on 1 December 2025, coordinated with the publication of this advisory. Credit Reported-by: Ratchanan Srirattanamet Patched-by: Ratchanan Sirrattanamet

  • This forum is all about the ongoing efforts to upgrade UT to the 20.04 codebase of Ubuntu.

    132 Topics
    954 Posts
    A
    @Moem @Luksus This is good news as this was a good phone with UBPorts
Log in to post
Load new posts
  • jezekJ

    Crossbuilder with ssh deployment

    6
    4 Votes
    6 Posts
    902 Views
    AppLeeA
    @jezek Not sure in fact if it can be used with 16.04 you're right. Here is the link to the Github repository of the PDK (Platform Development Kit): https://github.com/ubports/ubports-pdk
  • G

    I Need Help Understanding VoLTE and Touch

    17
    0 Votes
    17 Posts
    3k Views
    TotalSonicT
    @nero355 - the current work being done to enable VoLTE for Ubuntu Touch is prioritizing Mediatek support, as this development is being led by Volla, which uses those soc's - info here - https://www.jeroenbaten.nl/UT-VoLTE-proposed-technical-architecture.pdf Best regards, Steve Berson
  • flohackF

    OTA-21 Call for Testing Companion Post

    12
    2 Votes
    12 Posts
    2k Views
    J
    @Flohack USB/ ADB / MTP prob solved? browser issue already solved or not? Redmi 9 tested out couple things So when in Ubuntu touch can't connect my phone trough usb, Redmi 9 maybe someone solved it or not?? This means I can't use anbox or at least i haven't figured out how to yet. Morph: When download jpg or zip or what you want the browser shut down, after reopening the browser again it's gonna tell Download failed in the download tab. I'll try it again later in Eum some huge issue is when reboot or anything the phone is i have Redmi 9 is like old school windows going slow, when left for 10 min on a table it's getting better, turned in to airplane mode and it was like the problem was solved hahaha..... And when I have my sim in it is also with double like number keyboard and keypad for insert sim code on/ after boot up. Anyway I'll be unlocking my bootloader again in a few days just to try once again Also gonna try the fix gprs gps with unav outside Hope to see this going to work Can't wait for a fully operational system Love Ubuntu touch x J. L. Nengerman.
  • flohackF

    OTA-20 Call for Testing Companion Post

    Locked
    21
    3 Votes
    21 Posts
    6k Views
    flohackF
    Thank you all! OTA-20 rollout has started, so nothing to see here anymore
  • L

    Where is Nextcloud system-settings code?

    2
    1 Votes
    2 Posts
    540 Views
    klhK
    @lsitongia Here is the main doc: https://docs.ubports.com/en/latest/systemdev/online-accounts.html Nextcloud QML plugin: https://github.com/ubports/account-plugins/tree/xenial/qml/nextcloud
  • C

    Info about release candidate ?

    4
    0 Votes
    4 Posts
    789 Views
    C
    Thank's @applee @levone1
  • A

    Disable deep sleep mode

    7
    0 Votes
    7 Posts
    1k Views
    A
    @keneda Merci en tout cas
  • A

    Is there some option or support for Widevine DRM?

    2
    0 Votes
    2 Posts
    519 Views
    TotalSonicT
    @anonymoustly - Unfortunately there is no current support - but a solution could be done if someone from the community took it on themselves to code an arm64/armhf compatible extension for it, based on the one available for Linux Chrome. UBports would not be able to directly support or offer this though, due to legal licensing issues - but if a third party hosted it then UT users could choose to install it. Until someone capable of coding this undertakes the effort then Widevine support will be missing though. Best regards, Steve Berson
  • S

    rec works remotely, but not in local terminal

    2
    0 Votes
    2 Posts
    438 Views
    K
    There are still limitations in the terminal app. Not sure what reasons behind it though. You can work around this by connecting to itself via ssh.
  • flohackF

    OTA-19 Call for Testing Companion Post

    10
    4 Votes
    10 Posts
    2k Views
    cregoxC
    @keneda makes me wonder if and how that ever really happens anymore. sounds like an issue prior to ext3.
  • N

    Will there ever be a way to edit SIM Contacts ?

    8
    0 Votes
    8 Posts
    1k Views
    N
    @lduboeuf said in Will there ever be a way to edit SIM Contacts ?: You want to save your contacts to the SIM card ? It is not possible afaik. That is the problem indeed! @keneda said in Will there ever be a way to edit SIM Contacts ?: @nero355 Yes you can't edit or add contacts on the SIM, but no you're not left with only phone contacts as you can import SIM contacts (so they are reachable in this way), i don't really undertsand your problem here. I have noticed! :grinning_squinting_face: Even if it's not directly on your SIM, you can access then edit contacts from it. BTW i don't use online sync or whatever, only contact app, and if i have to export phone contacts to another phone, i use "export as VCF" thing. I do the same thing when there is no other option
  • D

    Add Avahi daemon

    3
    1 Votes
    3 Posts
    766 Views
    N
    On a WiFi network you usually want as little Multicast/Broadcast traffic as possible so I suggest that IF you add Avahi then please make sure it's DISABLED by DEFAULT On all my other Linux devices it's also Disabled where it can be and if it can be!
  • S

    how different is UT when compared to a computes os

    8
    0 Votes
    8 Posts
    1k Views
    MoemM
    @somannak said in how different is UT when compared to a computes os: That answers most of my questions for now. Niiice!
  • BollyB

    High CPU usage by kworker

    20
    5
    0 Votes
    20 Posts
    4k Views
    K
    I'm on RC (starting with 113, now 115) with my E4.5 for over 10 days now and I haven't been affected by this bug anymore.
  • 3

    This topic is deleted!

    1
    0 Votes
    1 Posts
    34 Views
    No one has replied
  • J

    Password and lock code

    2
    0 Votes
    2 Posts
    368 Views
    K
    Currently, no.
  • S

    Ubuntu touch version - where is the changelog?

    9
    1 Votes
    9 Posts
    2k Views
    dobeyD
    @unisuperbox There is the "merge events" filter on https://gitlab.com/groups/ubports/-/activity though. Granted it's not exact for what one might have gotten on their device, and you can't limit it to last 24 hours. But its's as reasonable a rough overview of changes as the aforementioned GitHub search query, I think.
  • poVoqP

    Wireguard VPN support?

    2
    0 Votes
    2 Posts
    911 Views
    dobeyD
    AFAIK, nobody is working on support for Wireguard currently. Most device kernels also don't have support for it. I guess there is a way to do it only in user space, but I am not sure what all the requirements are. If you want to open feature requests about what needs to be done to support it, and perhaps provide some pull requests for them, I'm sure it would be greatly appreciated.
  • K

    What's the dev team's workflow for editing core apps?

    Unsolved
    3
    0 Votes
    3 Posts
    658 Views
    K
    @keneda That's the intent - but would hate to get a community's hopes up until this thing works for one person. As for the tweak's contents, it's issue #727 on GitHub. I don't like that it's still open.
  • stanwoodS

    Driverless wifi printing

    18
    1 Votes
    18 Posts
    3k Views
    A
    Over in the Sailfish universe we have SeaPrint (by me)... so if someone wants to port it, feel free to get in touch. No CUPS dependencies, strictly speaking no dependencies at all other than Qt, but poppler is needed for working with simpler printers.