chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7107-1 Related CVEs: CVE-2023-45853 CVE-2022-37434 CVE-2018-25032 Upstream summary: It was discovered that Minizip in zlib incorrectly handled certain zip header fields. An attacker could possibly use this issue to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8181-1 Related CVEs: CVE-2022-23457 CVE-2022-24891 CVE-2025-5878 Upstream summary: Jaroslav Lobačevski discovered that ESAPI incorrectly validated directory paths during path verification. An attacker could possibly use this issue to bypass directory […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4627-1 Related CVEs: CVE-2020-8694 CVE-2020-12351 CVE-2020-12352 CVE-2020-24490 CVE-2020-16119 CVE-2020-16120 CVE-2020-14386 CVE-2020-12771  +12 more Upstream summary: Moritz Lipp, Michael Schwarz, Andreas Kogler, David Oswald, Catherine Easdon, Claudio Canella, and Daniel Gruss […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7981-1 Related CVEs: CVE-2026-22251 CVE-2026-22250 Upstream summary: It was discovered that wlc did not correctly handle SSL verification. An attacker could possibly use this issue to access sensitive resources. (CVE-2026-22250) […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7917-1 Related CVEs: CVE-2025-66034 CVE-2023-45139 Upstream summary: It was discovered that the subsetting module of fontTools was vulnerable to an XML External Entity (XEE) attack. An unauthenticated remote attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8144-1 Related CVEs: CVE-2025-12543 Upstream summary: It was discovered that Undertow incorrectly validated the Host header in incoming HTTP requests. A remote attacker could possibly use this issue to gain […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5138-1 Related CVEs: CVE-2020-29651 Upstream summary: The py.path.svnwc component of py (aka python-py) through v1.9.0 contains a regular expression with an ambiguous subpattern that is susceptible to catastrophic backtracing. This […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4565-1 Related CVEs: CVE-2019-16239 Upstream summary: It was discovered that OpenConnect has a buffer overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes. An attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7995-1 Related CVEs: CVE-2026-21925 CVE-2026-21932 CVE-2026-21933 CVE-2026-21945 CVE-2025-61748 CVE-2025-53057 CVE-2025-53066 Upstream summary: It was discovered that the RMI component of OpenJDK 25 would establish RMI TCP endpoint connections to a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3743-1 Related CVEs: CVE-2018-12911 CVE-2018-4246 CVE-2018-4261 CVE-2018-4262 CVE-2018-4263 CVE-2018-4264 CVE-2018-4265 CVE-2018-4266  +12 more Upstream summary: A large number of security issues were discovered in the WebKitGTK+ Web and JavaScript engines. […]