chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7158-1 Related CVEs: CVE-2018-25047 CVE-2023-28447 CVE-2024-35226 CVE-2018-13982 CVE-2018-16831 CVE-2021-21408 CVE-2021-26119 CVE-2021-26120  +1 more Upstream summary: It was discovered that Smarty incorrectly handled query parameters in requests. An attacker could possibly […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8267-1 Related CVEs: CVE-2024-27388 CVE-2024-46777 CVE-2024-46816 CVE-2024-49938 CVE-2024-50008 CVE-2024-50142 CVE-2025-21735 CVE-2025-37849  +12 more Upstream summary: Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6771-1 Related CVEs: CVE-2024-4340 CVE-2023-30608 Upstream summary: It was discovered that SQL parse incorrectly handled certain nested lists. An attacker could possibly use this issue to cause a denial of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7250-1 Related CVEs: CVE-2018-18836 CVE-2018-18837 CVE-2018-18838 CVE-2023-22497 CVE-2024-23722 CVE-2024-34250 CVE-2024-34251 Upstream summary: It was discovered that Netdata incorrectly handled parsing JSON input, which could lead to a JSON injection. An […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6912-1 Related CVEs: CVE-2024-6714 https://bugs.launchpad.net/ubuntu/+source/provd/+bug/2071574 Upstream summary: James Henstridge discovered that provd incorrectly handled environment variables. A local attacker could possibly use this issue to run arbitrary programs and escalate […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6629-1 Related CVEs: CVE-2021-45958 CVE-2022-31116 CVE-2022-31117 Upstream summary: It was discovered that UltraJSON incorrectly handled certain input with a large amount of indentation. An attacker could possibly use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7287-1 Related CVEs: CVE-2025-1390 CVE-2023-2602 CVE-2023-2603 Upstream summary: Tianjia Zhang discovered the libcap2 PAM module pam_cap incorrectly handled parsing group names in the configuration file. This could result in certain […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6758-1 Related CVEs: CVE-2022-46175 Upstream summary: It was discovered that the JSON5 parse method incorrectly handled the parsing of keys named \_\_proto\_\_. An attacker could possibly use this issue to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8223-1 Related CVEs: CVE-2024-38357 CVE-2024-38356 CVE-2024-42008 CVE-2024-42010 CVE-2026-26079 CVE-2026-25916 CVE-2019-15237 https://launchpad.net/bugs/2144682  +12 more Upstream summary: It was discovered that Roundcube Webmail mishandled Punycode xn-- domain names. An attacker could possibly […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6358-1 Related CVEs: CVE-2023-31606 Upstream summary: It was discovered that RedCloth incorrectly handled certain inputs during html sanitisation. An attacker could possibly use this issue to cause a denial of […]