chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7945-1 Related CVEs: CVE-2025-7424 CVE-2023-40403 CVE-2025-24855 CVE-2024-55549 CVE-2019-5815 CVE-2021-30560 Upstream summary: Ivan Fratric discovered that Libxslt was vulnerable to type confusion when performing XML transformations. An attacker could possibly use […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7497-1 Related CVEs: CVE-2021-21305 CVE-2023-49090 Upstream summary: Rikita Ishikawa discovered that CarrierWave did not correctly sanitize certain inputs. An attacker could possibly use this issue to execute arbitrary code. This […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3429-1 Related CVEs: CVE-2017-7982 Upstream summary: Wang Junjie discovered that Libplist incorrectly handled certain files. If a user were tricked into opening a crafted file, an attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8089-3 Related CVEs: CVE-2023-3978 CVE-2025-47911 CVE-2022-41723 CVE-2025-58190 CVE-2021-33194 CVE-2022-27664 CVE-2025-22872 CVE-2024-45338  +1 more Upstream summary: USN-8089-1 fixed vulnerabilities in Go Networking. This update provides the corresponding update to code vendored […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7778-1 Related CVEs: CVE-2025-9288 Upstream summary: Nikita Skovoroda discovered that sha.js did not properly handle certain inputs. An attacker could possibly use this issue to manipulate the internal state of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6571-1 Related CVEs: CVE-2022-26563 CVE-2019-11454 CVE-2019-11455 Upstream summary: Youssef Rebahi-Gilbert discovered that Monit did not properly process credentials for disabled accounts. An attacker could possibly use this issue to login […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7956-1 Related CVEs: CVE-2025-58181 CVE-2024-45337 Upstream summary: Jakub Ciolek discovered that the Go Cryptography module included in Google Guest Agent did not validate GSSAPI authentication requests during SSH operations. An […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4301-1 Related CVEs: CVE-2019-19053 CVE-2019-19056 CVE-2019-19058 CVE-2019-19059 CVE-2019-19066 CVE-2019-19068 CVE-2019-3016 CVE-2020-2732  +12 more Upstream summary: It was discovered that the KVM implementation in the Linux kernel, when paravirtual TLB flushes […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8091-1 Related CVEs: https://launchpad.net/bugs/2143850 CVE-2024-28085 CVE-2021-3995 CVE-2021-3996 Upstream summary: It was discovered that the util-linux su utility did not drop capabilities when being used with the –pty option. While not […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4987-1 Related CVEs: CVE-2021-22204 Upstream summary: It was discovered that ExifTool did not properly sanitize user data for the DjVu file format. An attacker could use this vulnerability to cause […]