chris

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6916-1 Related CVEs: CVE-2022-28805 CVE-2022-33099 Upstream summary: It was discovered that Lua did not properly generate code when "_ENV" is constant. An attacker could possibly use this issue to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7405-1 Related CVEs: CVE-2016-7142 CVE-2019-20917 CVE-2020-25269 Upstream summary: It was discovered that InspIRCd did not correctly handle certificate fingerprints, which could lead to spoofing. A remote attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3701-1 Related CVEs: CVE-2018-12910 CVE-2017-2885 https://launchpad.net/bugs/1573494 Upstream summary: It was discovered that libsoup incorrectly handled certain cookie requests. An attacker could possibly use this to cause a denial of service. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6753-1 Related CVEs: CVE-2023-46233 Upstream summary: Thomas Neil James Shadwell discovered that CryptoJS was using an insecure cryptographic default configuration. A remote attacker could possibly use this issue to expose […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2473-1 Related CVEs: CVE-2009-4135 CVE-2014-9471 Upstream summary: It was discovered that the distcheck rule in dist-check.mk in GNU coreutils allows local users to gain privileges via a symlink attack on […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6906-1 Related CVEs: CVE-2024-5569 Upstream summary: It was discovered that python-zipp did not properly handle the zip files with malformed names. An attacker could possibly use this issue to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7404-1 Related CVEs: CVE-2021-30130 CVE-2023-52892 CVE-2024-27354 CVE-2024-27355 Upstream summary: It was discovered that phpseclib did not correctly handle RSA PKCS#1 v1.5 signature verification. An attacker could possibly use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7416-1 Related CVEs: CVE-2016-2385 CVE-2018-14767 CVE-2020-28361 CVE-2018-16657 CVE-2020-27507 Upstream summary: Stelios Tsampas discovered that Kamailio did not correctly handle certain memory operations, which could lead to a buffer overflow. A […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7266-1 Related CVEs: CVE-2017-0691 CVE-2020-19858 CVE-2020-22628 CVE-2020-35530 CVE-2020-35531 CVE-2020-35532 CVE-2020-35533 CVE-2021-32142  +1 more Upstream summary: Zinuo Han and Ao Wang discovered that the Android DNG SDK, vendored in digiKam, did […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6935-1 Related CVEs: CVE-2023-40577 Upstream summary: It was discovered that prometheus-alertmanager didn't properly sanitize input it received through an API endpoint. An attacker with permission to send requests to this […]