Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 603
Alerts This Week
Warning Icon 1 603

Ubuntu 25.10 Tracker-Miners Important Denial of Service USN-8019-1

ubuntu
Calendar Grey February 5, 2026
Dist Ubuntu Esm H88
Critical updates for tracker-miners on various Ubuntu versions to prevent exploitation risks and crashes.
tracker-miners could be made to crash or run programs as your login if it opened a specially crafted file.

Summary

tracker-miners could be made to crash or run programs as your login if it

opened a specially crafted file.

Software Description:

- tracker-miners: Metadata database, indexer and search tool

Details:

Fatih �elik discovered that tracker-miners incorrectly handled certain

malformed MP3 files. An attacker could use this issue to cause

tracker-miners to crash, resulting in a denial of service, or possibly

execute arbitrary code.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 25.10
  tracker-extract                 3.8.2-4ubuntu2.1

Ubuntu 24.04 LTS
  tracker-extract                 3.7.1-1ubuntu0.1

Ubuntu 22.04 LTS
  tracker-extract                 3.3.3-0ubuntu0.20.04.4

After a standard system update you need to restart your session to make all
the necessary changes.

References

https://ubuntu.com/security/notices/USN-8019-1

CVE-2026-1764, CVE-2026-1765, CVE-2026-1766, CVE-2026-1767

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-8019-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.