chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7544-1 Related CVEs: CVE-2025-47273 CVE-2024-6345 CVE-2022-40897 Upstream summary: It was discovered that setuptools did not properly sanitize paths. An attacker could possibly use this issue to write files to arbitrary […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4360-4 Related CVEs: CVE-2020-12762 https://launchpad.net/bugs/1878723 Upstream summary: USN-4360-1 fixed a vulnerability in json-c. The security fix introduced a memory leak that was reverted in USN-4360-2 and USN-4360-3. This update provides […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3856-1 Related CVEs: CVE-2018-10910 Upstream summary: Chris Marchesi discovered that BlueZ incorrectly handled disabling Bluetooth visibility. A remote attacker could possibly pair to devices, contrary to expectations. This update adds […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2695-1 Related CVEs: CVE-2015-5522 CVE-2015-5523 Upstream summary: Fernando Muñoz discovered that HTML Tidy incorrectly handled memory. If a user or automated system were tricked into processing specially crafted data, applications […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7588-1 Related CVEs: CVE-2023-25567 CVE-2023-25565 CVE-2023-25564 CVE-2023-25563 Upstream summary: Phil Turnbull discovered that GSS NTLMSSP may perform out-of-bounds reads when decoding NTLM fields and target information. An attacker could possibly […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7046-1 Related CVEs: CVE-2024-42472 https://launchpad.net/bugs/2077087 Upstream summary: It was discovered that Flatpak incorrectly handled certain persisted directories. An attacker could possibly use this issue to read and write files in […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7404-1 Related CVEs: CVE-2021-30130 CVE-2023-52892 CVE-2024-27354 CVE-2024-27355 Upstream summary: It was discovered that phpseclib did not correctly handle RSA PKCS#1 v1.5 signature verification. An attacker could possibly use this issue […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6876-1 Related CVEs: CVE-2019-19907 CVE-2022-26562 Upstream summary: It was discovered that Kopano Core allowed out-of-bounds access. An attacker could use this issue to expose private information. This issue only affected […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7356-1 Related CVEs: CVE-2024-34402 CVE-2024-34403 Upstream summary: It was discovered that uriparser did not correctly handle certain inputs, which could lead to an integer overflow. An attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7558-1 Related CVEs: CVE-2023-50186 CVE-2024-0444 CVE-2025-3887 CVE-2023-37329 CVE-2023-40474 CVE-2023-40475 CVE-2023-40476 CVE-2023-44429  +1 more Upstream summary: It was discovered that the AV1 codec plugin in GStreamer could be made to write […]