Home / mailingsPDF  

[USN-8442-1] kitty vulnerabilities

Posted on 17 June 2026
Ubuntu Security

==========================================================================Ubuntu Security Notice USN-8442-1
June 17, 2026

kitty vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 26.04 LTS
- Ubuntu 25.10
- Ubuntu 24.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS

Summary:

Several security issues were fixed in kitty.

Software Description:
- kitty: The fast, feature-rich, GPU based terminal emulator

Details:

It was discovered that kitty incorrectly handled certain image data. An
attacker able to write to the terminal's input could possibly use this
issue to cause kitty to crash, resulting in a denial of service, or
possibly execute arbitrary code. (CVE-2026-33633)

It was discovered that kitty incorrectly handled certain graphics commands.
An attacker able to write escape sequences to a kitty terminal could
possibly use this issue to cause kitty to crash, resulting in a denial of
service, or possibly execute arbitrary code. (CVE-2026-33642)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 26.04 LTS
kitty 0.45.0-1ubuntu0.1~esm1
Available with Ubuntu Pro
kitty-shell-integration 0.45.0-1ubuntu0.1~esm1
Available with Ubuntu Pro

Ubuntu 25.10
kitty 0.41.1-2+deb13u1build0.25.10.1
kitty-shell-integration 0.41.1-2+deb13u1build0.25.10.1

Ubuntu 24.04 LTS
kitty 0.32.2-1ubuntu0.4+esm1
Available with Ubuntu Pro
kitty-shell-integration 0.32.2-1ubuntu0.4+esm1
Available with Ubuntu Pro

Ubuntu 22.04 LTS
kitty 0.21.2-1ubuntu0.22.04.1+esm1
Available with Ubuntu Pro

Ubuntu 20.04 LTS
kitty 0.15.0-1ubuntu0.2+esm1
Available with Ubuntu Pro

After a standard system update you need to restart kitty to make all the
necessary changes.

References:
https://ubuntu.com/security/notices/USN-8442-1
CVE-2026-33633, CVE-2026-33642

Package Information:
https://launchpad.net/ubuntu/+source/kitty/0.41.1-2+deb13u1build0.25.10.1

--===============3726734407582977483==Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature

 

TOP

Mailings :

Exploits :