IT, Cloud & DevOps Blog

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4775-1 Related CVEs: CVE-2015-3200 CVE-2018-19052 Upstream summary: It was discovered that Lighttpd did not properly sanitized the string used in basic HTTP authentication method. A remote attacker could use this […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6374-1 Related CVEs: CVE-2023-4874 CVE-2023-4875 CVE-2021-32055 CVE-2022-1328 CVE-2021-3181 CVE-2020-28896 CVE-2020-14954 https://launchpad.net/bugs/1884588  +12 more Upstream summary: It was discovered that Mutt incorrectly handled certain email header contents. If a user were […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5946-1 Related CVEs: CVE-2021-39139 CVE-2021-39140 CVE-2021-39141 CVE-2021-39144 CVE-2021-39145 CVE-2021-39146 CVE-2021-39147 CVE-2021-39148  +7 more Upstream summary: Lai Han discovered that XStream incorrectly handled certain inputs. If a user or an automated […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4760-1 Related CVEs: CVE-2021-24031 CVE-2021-24032 CVE-2019-11922 Upstream summary: It was discovered that libzstd incorrectly handled file permissions. A local attacker could possibly use this issue to access certain files, contrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6061-1 Related CVEs: CVE-2022-0108 CVE-2022-32885 CVE-2023-25358 CVE-2023-27932 CVE-2023-27954 CVE-2023-28205 CVE-2023-23529 CVE-2022-42826  +12 more Upstream summary: Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8168-1 Related CVEs: CVE-2026-33056 Upstream summary: It was discovered that tar-rs embedded in rustc incorrectly handled symlinks when unpacking a tar archive. If a user or automated system were tricked […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3719-1 Related CVEs: CVE-2018-14349 CVE-2018-14350 CVE-2018-14351 CVE-2018-14352 CVE-2018-14353 CVE-2018-14354 CVE-2018-14355 CVE-2018-14356  +5 more Upstream summary: It was discovered that Mutt incorrectly handled certain requests. An attacker could possibly use this […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5160-1 Related CVEs: CVE-2021-36370 Upstream summary: It was discovered that Midnight Commander would not check server fingerprints when establishing an SFTP connection. If a remote attacker were able to intercept […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8115-1 Related CVEs: CVE-2026-27459 CVE-2026-27448 Upstream summary: It was discovered that pyOpenSSL incorrectly handled exceptions in the tlsext_servername callback. This could result in connections being accepted after an exception, contrary […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5009-1 Related CVEs: CVE-2020-29129 CVE-2020-29130 CVE-2021-3592 CVE-2021-3593 CVE-2021-3594 CVE-2021-3595 CVE-2020-10756 Upstream summary: Qiuhao Li discovered that libslirp incorrectly handled certain header data lengths. An attacker inside a guest could possibly […]