Blog

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6911-1 Related CVEs: CVE-2024-40767 CVE-2024-32498 https://launchpad.net/bugs/2020111 https://launchpad.net/bugs/2019460 CVE-2023-2088 CVE-2015-9543 CVE-2017-18191 CVE-2020-17376  +3 more Upstream summary: Arnaud Morin discovered that Nova incorrectly handled certain raw format images. An authenticated user could […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4572-2 Related CVEs: CVE-2020-14355 CVE-2019-3813 CVE-2018-10873 CVE-2017-12194 CVE-2017-7506 CVE-2016-9577 CVE-2016-9578 CVE-2016-0749  +4 more Upstream summary: USN-4572-1 fixed a vulnerability in Spice. This update provides the corresponding update for Ubuntu 14.04 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5222-1 Related CVEs: CVE-2021-44832 CVE-2021-45105 CVE-2021-44228 Upstream summary: It was discovered that Apache Log4j 2 was vulnerable to remote code execution (RCE) attack when configured to use a JDBC Appender […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8238-1 Related CVEs: CVE-2026-40489 Upstream summary: It was discovered that EditorConfig incorrectly handled specially crafted configuration files. A local attacker could possibly use this issue to cause EditorConfig to crash, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5631-1 Related CVEs: CVE-2018-11813 CVE-2020-17541 CVE-2020-35538 CVE-2021-46822 CVE-2020-13790 Upstream summary: It was discovered that libjpeg-turbo incorrectly handled certain EOF characters. An attacker could possibly use this issue to cause libjpeg-turbo […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5143-1 Related CVEs: CVE-2018-7247 Upstream summary: It was discovered that Leptonica incorrectly handled certain image files. An attacker could possibly use this issue to execute arbitrary code or other unspecified […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8191-1 Related CVEs: CVE-2024-47554 Upstream summary: It was discovered that Apache Commons IO's XmlStreamReader class could excessively consume CPU resources under certain circumstances. An attacker could possibly use this issue […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7112-1 Related CVEs: CVE-2021-40812 CVE-2017-6363 CVE-2021-38115 CVE-2021-40145 CVE-2018-14553 CVE-2019-11038 CVE-2019-6977 CVE-2019-6978  +2 more Upstream summary: It was discovered that the GD Graphics Library did not perform proper bounds checking while […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6969-1 Related CVEs: CVE-2024-25641 CVE-2024-29894 CVE-2024-31443 CVE-2024-31444 CVE-2024-31445 CVE-2024-31458 CVE-2024-31459 CVE-2024-31460  +6 more Upstream summary: It was discovered that Cacti did not properly apply checks to the "Package Import" feature. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6879-1 Related CVEs: CVE-2023-31620 CVE-2023-31622 CVE-2023-31624 CVE-2023-31626 CVE-2023-31627 CVE-2023-31629 CVE-2023-31630 CVE-2023-31631  +12 more Upstream summary: Jingzhou Fu discovered that Virtuoso Open-Source Edition incorrectly handled certain crafted SQL statements. An attacker […]