IT, Cloud & DevOps Blog

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7260-1 Related CVEs: CVE-2023-37476 CVE-2023-41886 CVE-2023-41887 CVE-2024-23833 CVE-2024-47878 CVE-2024-47879 CVE-2024-47880 CVE-2024-47881  +2 more Upstream summary: It was discovered that OpenRefine did not properly handle opening tar files. If a user […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7282-1 Related CVEs: CVE-2017-12616 CVE-2017-12617 CVE-2019-0221 CVE-2020-9484 CVE-2021-25329 CVE-2016-5388 CVE-2018-1336 CVE-2015-5174  +7 more Upstream summary: It was discovered that Tomcat incorrectly handled being configured with HTTP PUTs enabled. A remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7474-1 Related CVEs: CVE-2023-28840 CVE-2023-28841 CVE-2023-28842 CVE-2024-23651 CVE-2024-23652 CVE-2024-36621 CVE-2024-36623 CVE-2024-29018  +8 more Upstream summary: Cory Snider discovered that Docker incorrectly handled networking packet encapsulation. An attacker could use this […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5525-1 Related CVEs: CVE-2021-40690 Upstream summary: It was discovered that Apache XML Security for Java incorrectly passed a configuration property when creating specific key elements. This allows an attacker to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6169-1 Related CVEs: CVE-2022-2469 Upstream summary: It was discovered that GNU SASL's GSSAPI server could make an out-of-bounds reads if given specially crafted GSS-API authentication data. A remote attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7231-1 Related CVEs: CVE-2023-27783 CVE-2023-27784 CVE-2023-27785 CVE-2023-27786 CVE-2023-27787 CVE-2023-27788 CVE-2023-27789 CVE-2023-4256  +1 more Upstream summary: It was discovered that Tcpreplay incorrectly handled memory when using the tcprewrite utility. A remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5711-2 Related CVEs: CVE-2022-40284 CVE-2022-30783 CVE-2022-30784 CVE-2022-30785 CVE-2022-30786 CVE-2022-30787 CVE-2022-30788 CVE-2022-30789  +2 more Upstream summary: USN-5711-1 fixed a vulnerability in NTFS-3G. This update provides the corresponding update for Ubuntu 14.04 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6065-1 Related CVEs: CVE-2021-33587 CVE-2022-21222 Upstream summary: It was discovered that css-what incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5547-1 Related CVEs: CVE-2022-31607 CVE-2022-31608 CVE-2022-31615 Upstream summary: Le Wu discovered that the NVIDIA graphics drivers did not properly perform input validation in some situations. A local user could use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5998-1 Related CVEs: CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 CVE-2019-17571 CVE-2021-4104 Upstream summary: It was discovered that the SocketServer component of Apache Log4j 1.2 incorrectly handled deserialization. An attacker could possibly use this […]