IT, Cloud & DevOps Blog

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5852-1 Related CVEs: CVE-2022-47950 Upstream summary: It was discovered that OpenStack Swift incorrectly handled certain XML files. A remote authenticated user could possibly use this issue to obtain arbitrary file […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8249-1 Related CVEs: CVE-2026-2219 CVE-2025-6297 Upstream summary: Yashashree Gund discovered that the dpkg dpkg-deb tool incorrectly handled certain zstd-compressed .deb archives. If a user or automated system were tricked into […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5274-1 Related CVEs: CVE-2020-14409 CVE-2020-14410 CVE-2017-2888 CVE-2019-7635 CVE-2019-7636 CVE-2019-7637 CVE-2019-7638 Upstream summary: It was discovered that Simple DirectMedia Layer library incorrectly handled memory when parsing certain specially crafted .BMP files. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4843-1 Related CVEs: CVE-2014-9218 CVE-2016-6609 CVE-2016-6619 CVE-2016-6630 CVE-2016-9849 CVE-2016-9866 CVE-2017-18264 CVE-2017-1000014  +12 more Upstream summary: Javier Nieto and Andres Rojas discovered that phpMyAdmin incorrectly managed input in the form of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5704-1 Related CVEs: CVE-2022-42010 CVE-2022-42011 CVE-2022-42012 CVE-2020-35512 CVE-2020-12049 Upstream summary: It was discovered that DBus incorrectly handled messages with invalid type signatures. A local attacker could possibly use this issue […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8225-1 Related CVEs: CVE-2025-68480 CVE-2018-17175 Upstream summary: Jared Deckard discovered that Python marshmallow did not correctly handle hiding certain fields. An attacker could possibly use this issue to leak sensitive […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7217-1 Related CVEs: CVE-2017-5886 CVE-2018-11255 CVE-2018-12983 CVE-2018-20797 CVE-2018-5308 CVE-2018-8002 CVE-2019-10723 CVE-2020-18971  +2 more Upstream summary: It was discovered that the PoDoFo library could dereference a NULL pointer when getting the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5323-1 Related CVEs: CVE-2022-26495 CVE-2022-26496 Upstream summary: It was discovered that NBD incorrectly handled name length fields. A remote attacker could use this issue to cause NBD to crash, resulting […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6895-3 Related CVEs: CVE-2023-52631 CVE-2023-52637 CVE-2023-52638 CVE-2023-52642 CVE-2023-52643 CVE-2023-52645 CVE-2023-52880 CVE-2023-6270  +12 more Upstream summary: It was discovered that the ATA over Ethernet (AoE) driver in the Linux kernel contained […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7014-2 Related CVEs: CVE-2024-7347 CVE-2022-41741 CVE-2022-41742 CVE-2020-11724 CVE-2020-36309 CVE-2021-3618 CVE-2017-20005 CVE-2021-23017  +11 more Upstream summary: USN-7014-1 fixed a vulnerability in nginx. This update provides the corresponding updates for Ubuntu 16.04 […]