Ubuntu 26.04 Config-IniFiles Critical Command Exec Threat USN-8445-1
ubuntu
June 17, 2026
Config-IniFiles could be made to run commands or overwrite files if it received specially crafted input.
Summary
A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 26.04 LTS - Ubuntu 25.10 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS Summary: Config-IniFiles could be made to run commands or overwrite files if it received specially crafted input. Software Description: - libconfig-inifiles-perl: Perl module for working with INI configuration files Details: It was discovered that Config-IniFiles incorrectly handled the -file argument in certain situations. An attacker could possibly use this issue to execute arbitrary commands or overwrite arbitrary files.
Update Instructions
The problem can be corrected by updating your system to the following package versions: Ubuntu 26.04 LTS libconfig-inifiles-perl 3.000003-4ubuntu0.1 Ubuntu 25.10 libconfig-inifiles-perl 3.000003-3ubuntu0.1 Ubuntu 24.04 LTS libconfig-inifiles-perl 3.000003-2ubuntu0.1 Ubuntu 22.04 LTS libconfig-inifiles-perl 3.000003-1ubuntu0.1 In general, a standard system update will make all the necessary changes.
References
https://ubuntu.com/security/notices/USN-8445-1
CVE-2026-11527
PREVIOUS 
NEXT 
Severity
critical
Lowest
Low
Medium
High
Critical
Ubuntu Security Notice USN-8445-1
Package Information
https://launchpad.net/ubuntu/+source/libconfig-inifiles-perl/3.000003-4ubuntu0.1 https://launchpad.net/ubuntu/+source/libconfig-inifiles-perl/3.000003-3ubuntu0.1 https://launchpad.net/ubuntu/+source/libconfig-inifiles-perl/3.000003-2ubuntu0.1 https://launchpad.net/ubuntu/+source/libconfig-inifiles-perl/3.000003-1ubuntu0.1
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!