IT, Cloud & DevOps Blog

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7010-2 Related CVEs: CVE-2021-41687 CVE-2021-41688 CVE-2021-41689 CVE-2021-41690 CVE-2022-2121 CVE-2022-43272 CVE-2024-28130 CVE-2024-34508  +5 more Upstream summary: USN-7010-1 fixed vulnerabilities in DCMTK. The update introduced a regression. This update fixes the problem. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6158-1 Related CVEs: CVE-2022-0235 Upstream summary: It was discovered that Node Fetch incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6407-2 Related CVEs: CVE-2023-43785 CVE-2023-43786 CVE-2023-43787 CVE-2023-3138 CVE-2021-31535 CVE-2020-14344 CVE-2020-14363 CVE-2016-7942  +4 more Upstream summary: USN-6407-1 fixed several vulnerabilities in libx11. This update provides the corresponding update for Ubuntu 14.04 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7692-1 Related CVEs: CVE-2023-45024 CVE-2025-30087 CVE-2024-3262 CVE-2025-31501 CVE-2022-25803 CVE-2022-25802 CVE-2025-31500 CVE-2025-2545  +3 more Upstream summary: It was discovered that Request Tracker was susceptible to timing attacks. An attacker could possibly […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5697-1 Related CVEs: CVE-2022-3100 CVE-2022-23451 CVE-2022-23452 Upstream summary: Douglas Mendizabal discovered that Barbican incorrectly handled certain query strings. A remote attacker could possibly use this issue to bypass the access […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5840-1 Related CVEs: CVE-2018-5786 CVE-2020-25467 CVE-2021-27345 CVE-2021-27347 CVE-2022-26291 CVE-2022-28044 Upstream summary: It was discovered that Long Range ZIP incorrectly handled pointers. If a user or an automated system were tricked […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7369-1 Related CVEs: CVE-2024-25260 CVE-2025-1365 CVE-2025-1371 CVE-2025-1372 CVE-2025-1377 Upstream summary: It was discovered that readelf from elfutils could be made to read out of bounds. If a user or automated […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6334-1 Related CVEs: CVE-2020-6097 CVE-2021-41054 CVE-2021-46671 Upstream summary: Peter Wang discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp request to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7562-1 Related CVEs: CVE-2024-24549 CVE-2024-34750 CVE-2024-23672 CVE-2023-42795 CVE-2024-38286 CVE-2023-45648 CVE-2023-28708 CVE-2024-21733  +12 more Upstream summary: It was discovered that Tomcat did not include the secure attribute for session cookies when […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5584-1 Related CVEs: CVE-2022-2787 Upstream summary: It was discovered that Schroot incorrectly handled certain Schroot names. An attacker could possibly use this issue to break schroot's internal state causing a […]