chris

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6826-1 Related CVEs: CVE-2023-41081 Upstream summary: Karl von Randow discovered that mod_jk was vulnerable to an authentication bypass. If the configuration did not provide explicit mounts for all possible proxied […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3946-1 Related CVEs: CVE-2019-1000018 CVE-2019-3463 CVE-2019-3464 Upstream summary: It was discovered that rssh incorrectly handled certain command-line arguments and environment variables. An authenticated user could bypass rssh's command restrictions, allowing […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7024-1 Related CVEs: CVE-2024-45751 Upstream summary: It was discovered that tgt attempts to achieve entropy by calling rand without srand. The PRNG seed is always 1, and thus the sequence […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7544-1 Related CVEs: CVE-2025-47273 CVE-2024-6345 CVE-2022-40897 Upstream summary: It was discovered that setuptools did not properly sanitize paths. An attacker could possibly use this issue to write files to arbitrary […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7267-2 Related CVEs: CVE-2024-50612 Upstream summary: USN-7267-1 fixed a vulnerability in libsndfile. This update provides the corresponding updates for Ubuntu 24.04 LTS and Ubuntu 24.10. Original advisory details: It was […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7474-1 Related CVEs: CVE-2023-28840 CVE-2023-28841 CVE-2023-28842 CVE-2024-23651 CVE-2024-23652 CVE-2024-36621 CVE-2024-36623 CVE-2024-41110 Upstream summary: Cory Snider discovered that Docker incorrectly handled networking packet encapsulation. An attacker could use this issue to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7508-2 Related CVEs: CVE-2025-22247 CVE-2023-34058 CVE-2023-34059 CVE-2023-20900 CVE-2023-20867 CVE-2022-31676 Upstream summary: USN-7508-1 fixed a vulnerability in Open VM Tools. This update provides the corresponding update for Ubuntu 16.04 LTS and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3784-1 Related CVEs: https://launchpad.net/bugs/1788929 https://launchpad.net/bugs/1794848 Upstream summary: As a security improvement, this update adjusts the private-files abstraction to disallow writing to thumbnailer configuration files. Additionally adjust the private-files, private-files-strict and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2627-1 Related CVEs: CVE-2015-3905 Upstream summary: Jakub Wilk discovered that t1utils incorrectly handled certain malformed fonts. If a user or automated system were tricked into opening a specially crafted font, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7030-1 Related CVEs: CVE-2022-44900 Upstream summary: It was discovered that py7zr was vulnerable to path traversal attacks. If a user or automated system were tricked into extracting a specially crafted […]