CVE-2025-71063

Publication date 12 January 2026

Last updated 13 January 2026

Ubuntu priority

Medium

Why this priority?

Cvss 3 Severity Score

8.2 · High

Score breakdown

Description

Errands before 46.2.10 does not verify TLS certificates for CalDAV servers.

Status

Package Ubuntu Release Status
errands 25.10 questing
Needs evaluation
25.04 plucky Ignored end of life, was needs-triage
24.04 LTS noble
Needs evaluation
22.04 LTS jammy Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
errands

Severity score breakdown

Parameter Value
Base score 8.2 · High
Attack vector Adjacent
Attack complexity High
Privileges required None
User interaction None
Scope Changed
Confidentiality High
Integrity impact High
Availability impact Low
Vector CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:L

References

Other references