IT, Cloud & DevOps Blog

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8191-1 Related CVEs: CVE-2024-47554 Upstream summary: It was discovered that Apache Commons IO's XmlStreamReader class could excessively consume CPU resources under certain circumstances. An attacker could possibly use this issue […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5627-1 Related CVEs: CVE-2022-1586 CVE-2022-1587 Upstream summary: It was discovered that PCRE incorrectly handled memory when handling certain regular expressions. An attacker could possibly use this issue to cause applications […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6488-2 Related CVEs: CVE-2023-41913 CVE-2022-40617 CVE-2021-45079 CVE-2021-41991 CVE-2018-17540 CVE-2018-10811 CVE-2018-16151 CVE-2018-16152  +4 more Upstream summary: USN-6488-1 fixed a vulnerability in strongSwan. This update provides the corresponding updates for Ubuntu 16.04 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8168-1 Related CVEs: CVE-2026-33056 Upstream summary: It was discovered that tar-rs embedded in rustc incorrectly handled symlinks when unpacking a tar archive. If a user or automated system were tricked […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4869-1 Related CVEs: CVE-2019-3500 Upstream summary: It was discovered that aria2 could accidentally leak authentication data. An attacker could possibly use this to gain access to sensitive information. Table of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6422-1 Related CVEs: CVE-2021-37706 CVE-2021-43299 CVE-2021-43300 CVE-2021-43301 CVE-2021-43302 CVE-2021-43303 CVE-2021-43804 CVE-2021-43845  +12 more Upstream summary: It was discovered that Ring incorrectly handled certain inputs. If a user or an automated […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6809-1 Related CVEs: CVE-2022-3563 CVE-2023-27349 CVE-2023-45866 https://launchpad.net/bugs/1977968 CVE-2022-0204 CVE-2019-8922 CVE-2021-3658 CVE-2021-41229  +6 more Upstream summary: It was discovered that BlueZ could be made to dereference invalid memory. An attacker could […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3905-1 Related CVEs: CVE-2019-9200 CVE-2018-20551 CVE-2019-7310 CVE-2018-20481 CVE-2018-20650 CVE-2018-16646 CVE-2018-19149 CVE-2018-19058  +12 more Upstream summary: It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4937-2 Related CVEs: https://launchpad.net/bugs/1929304 CVE-2021-28650 https://launchpad.net/bugs/1917812 CVE-2020-36241 Upstream summary: USN-4937-1 fixed a vulnerability in GNOME Autoar. The update caused a regression when extracting certain archives. This update fixes the problem. […]