chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7916-1 Related CVEs: CVE-2025-6966 https://launchpad.net/bugs/1907676 CVE-2020-27351 https://launchpad.net/bugs/1860606 CVE-2019-15795 CVE-2019-15796 Upstream summary: Julian Andres Klode discovered that python-apt incorrectly handled deb822 configuration files. An attacker could use this issue to cause […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7664-1 Related CVEs: CVE-2022-29970 CVE-2022-45442 Upstream summary: It was discovered that Sinatra incorrectly handled serving static files. An attacker could possibly use this issue to perform local file inclusion, obtaining […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7677-1 Related CVEs: CVE-2024-6174 CVE-2024-11584 Upstream summary: Harry Sintonen discovered that the hotplugd socket in cloud-init was world writable. An attacker could possibly use this issue to send hotplug-hook commands. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7537-2 Related CVEs: https://launchpad.net/bugs/2111912 CVE-2025-46836 Upstream summary: USN-7537-1 fixed a vulnerability in net-tools that caused a regression. This update fixes the problem. Original advisory details: It was discovered that net-tools […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4276-1 Related CVEs: CVE-2018-14779 CVE-2018-14780 Upstream summary: It was discovered that libykpiv, a supporting library of the Yubico PIV Tool and YubiKey PIV Manager, mishandled specially crafted input. An attacker […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7959-1 Related CVEs: CVE-2016-9843 CVE-2016-9840 CVE-2016-9841 CVE-2018-25032 CVE-2022-37434 CVE-2021-31870 CVE-2021-31871 CVE-2021-31872  +1 more Upstream summary: It was discovered that zlib, vendored in klibc, did not properly handle integer arithmetic. An […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4871-1 Related CVEs: CVE-2020-10699 CVE-2020-13867 Upstream summary: It was discovered that targetcli-fb did not properly manage socket permissions. A local attacker could use this issue to modify the iSCSI configuration […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7813-1 Related CVEs: CVE-2024-45237 CVE-2024-45234 CVE-2024-48943 CVE-2024-45236 CVE-2024-45238 CVE-2024-45239 CVE-2024-45235 Upstream summary: Niklas Vogel and Haya Schulmann discovered that FORT Validator did not perform proper input validation when parsing certain […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8160-1 Related CVEs: CVE-2025-14847 CVE-2018-20802 CVE-2019-20925 CVE-2019-2386 Upstream summary: It was discovered that MongoDB incorrectly handled length parameters in zlib-compressed network messages prior to authentication. An unauthenticated remote attacker could […]