Blog

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8196-1 Related CVEs: CVE-2026-35329 CVE-2026-35331 CVE-2026-35330 CVE-2026-35332 CVE-2026-35328 CVE-2026-35333 CVE-2026-35334 CVE-2026-25075  +4 more Upstream summary: Haruto Kimura discovered that strongSwan incorrectly handled the supported_versions extension in TLS. A remote attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6670-1 Related CVEs: CVE-2022-24775 CVE-2023-29197 Upstream summary: It was discovered that php-guzzlehttp-psr7 incorrectly parsed HTTP headers. A remote attacker could possibly use these issues to perform an HTTP header injection attack. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6815-1 Related CVEs: CVE-2024-5171 Upstream summary: Xiantong Hou discovered that AOM did not properly handle certain malformed media files. If an application using AOM opened a specially crafted file, a remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8154-2 Related CVEs: CVE-2026-33033 CVE-2026-4292 CVE-2026-4277 CVE-2026-1312 CVE-2025-13473 CVE-2026-1287 CVE-2025-14550 CVE-2026-1285  +12 more Upstream summary: USN-8154-1 fixed vulnerabilities in Django. This update provides the corresponding updates for CVE-2026-33033 and CVE-2026-4292 in […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7108-1 Related CVEs: CVE-2023-46445 CVE-2023-46446 CVE-2023-48795 Upstream summary: Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk discovered that AsyncSSH did not properly handle the extension info message. An attacker able to intercept […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6232-1 Related CVEs: CVE-2020-21365 Upstream summary: It was discovered that wkhtmltopdf was not properly enforcing the same-origin policy when processing certain HTML files. If a user or automated system using wkhtmltopdf […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7117-1 Related CVEs: CVE-2024-10224 CVE-2024-11003 CVE-2024-48990 CVE-2024-48991 CVE-2024-48992 Upstream summary: Qualys discovered that needrestart passed unsanitized data to a library (libmodule-scandeps-perl) which expects safe input. A local attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6431-1 Related CVEs: CVE-2023-38403 https://launchpad.net/bugs/2038654 CVE-2016-4303 Upstream summary: It was discovered that iperf3 did not properly manage certain inputs, which could lead to a crash. A remote attacker could possibly use […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6714-1 Related CVEs: CVE-2023-27635 Upstream summary: It was discovered that debmany in Debian Goodies incorrectly handled certain deb files. An attacker could possibly use this issue to execute arbitrary shell commands. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8102-1 Related CVEs: CVE-2026-3888 CVE-2024-1724 CVE-2024-29068 CVE-2024-29069 CVE-2023-1523 CVE-2022-3328 https://bugs.launchpad.net/ubuntu/+source/snapd/+bug/1961365 https://bugs.launchpad.net/ubuntu/+source/snapd/+bug/1961791  +7 more Upstream summary: Qualys discovered that snapd incorrectly handled certain operations in the snap's private /tmp directory. If systemd-tmpfiles […]