IT, Cloud & DevOps Blog

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6148-1 Related CVEs: CVE-2023-25076 Upstream summary: It was discovered that SNI Proxy did not properly handle wildcard backend hosts. An attacker could possibly use this issue to cause a buffer […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5673-1 Related CVEs: CVE-2021-4217 CVE-2022-0529 CVE-2022-0530 https://launchpad.net/bugs/1957077 CVE-2014-9913 CVE-2016-9844 CVE-2018-1000035 CVE-2018-18384  +1 more Upstream summary: It was discovered that unzip did not properly handle unicode strings under certain circumstances. If […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7355-1 Related CVEs: CVE-2023-37271 CVE-2023-41039 CVE-2024-47532 CVE-2025-22153 Upstream summary: Nakul Choudhary and Robert Xiao discovered that RestrictedPython did not properly sanitize certain inputs. An attacker could possibly use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6277-1 Related CVEs: CVE-2014-5011 CVE-2014-5012 CVE-2014-5013 CVE-2021-3838 CVE-2022-2400 Upstream summary: It was discovered that Dompdf was not properly validating untrusted input when processing HTML content under certain circumstances. An attacker […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7630-1 Related CVEs: CVE-2016-6347 CVE-2016-7050 CVE-2020-25633 CVE-2016-6348 CVE-2016-6345 CVE-2016-6346 CVE-2021-20289 CVE-2024-9622  +3 more Upstream summary: It was discovered that RESTEasy made insufficient use of random values in asynchronous jobs. An […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6990-1 Related CVEs: CVE-2024-39844 Upstream summary: Johannes Kuhn (DasBrain) discovered that znc incorrectly handled user input under certain operations. An attacker could possibly use this issue to execute arbitrary code […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5570-1 Related CVEs: CVE-2022-37434 CVE-2018-25032 Upstream summary: Evgeny Legerov discovered that zlib incorrectly handled memory when performing certain inflate operations. An attacker could use this issue to cause zlib to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7604-2 Related CVEs: CVE-2025-32462 CVE-2023-28486 CVE-2023-28487 CVE-2023-22809 CVE-2021-23239 CVE-2021-3156 CVE-2019-18634 CVE-2019-14287  +3 more Upstream summary: USN-7604-1 fixed CVE-2025-32462 in sudo. This update provides the corresponding fixes for Ubuntu 20.04 LTS, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6345-1 Related CVEs: CVE-2023-32627 CVE-2021-33844 CVE-2019-13590 CVE-2021-23159 CVE-2021-23172 CVE-2021-23210 CVE-2021-3643 CVE-2021-40426  +2 more Upstream summary: It was discovered that SoX incorrectly handled certain inputs. If a user or an automated […]