chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8035-1 Related CVEs: CVE-2026-25646 CVE-2026-22801 CVE-2025-66293 CVE-2026-22695 CVE-2025-64720 CVE-2025-64506 CVE-2025-64505 CVE-2025-65018 Upstream summary: It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3401-1 Related CVEs: CVE-2016-10243 Upstream summary: It was discovered that TeX Live incorrectly handled certain system commands. If a user were tricked into processing a specially crafted TeX file, a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7447-1 Related CVEs: CVE-2025-3155 Upstream summary: It was discovered that Yelp incorrectly handled paths in ghelp URLs. A remote attacker could use this issue to trick users into opening malicious […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4958-1 Related CVEs: https://launchpad.net/bugs/1912060 Upstream summary: It was discovered that the Caribou onscreen keyboard could be made to crash when given certain input values. An attacker could use this to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7753-1 Related CVEs: CVE-2025-9375 Upstream summary: Camilo Vera discovered that xmltodict parsed maliciously crafted XML input, contrary to expectations. An attacker could possibly use this issue to cause a denial […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7891-1 Related CVEs: CVE-2023-53159 CVE-2025-3416 CVE-2025-24898 Upstream summary: Matt Mastracci discovered that rust-openssl was incorrectly handling server lifetimes in certain functions. An attacker could possibly use this issue to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8108-1 Related CVEs: CVE-2024-30172 CVE-2023-33201 CVE-2025-8916 CVE-2024-29857 CVE-2024-30171 CVE-2024-34447 Upstream summary: It was discovered that Bouncy Castle did not sanitize user input when inserting it into an LDAP search filter. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6190-2 Related CVEs: CVE-2023-3297 CVE-2018-14036 CVE-2020-16126 Upstream summary: USN-6190-1 fixed a vulnerability in AccountsService. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8233-1 Related CVEs: CVE-2026-27135 CVE-2019-9511 CVE-2019-9513 CVE-2023-44487 CVE-2024-28182 CVE-2020-11080 Upstream summary: Andrew MacPherson discovered that nghttp2 did not properly validate internal state when the session termination API was called. A […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7992-2 Related CVEs: CVE-2026-24061 CVE-2022-39028 CVE-2023-40303 CVE-2021-40491 CVE-2020-10188 Upstream summary: USN-7992-1 fixed vulnerabilities in telnetd in Inetutils. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, […]