IT, Cloud & DevOps Blog

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5785-1 Related CVEs: CVE-2019-17185 CVE-2022-41860 CVE-2022-41861 CVE-2019-11234 CVE-2019-11235 Upstream summary: It was discovered that FreeRADIUS incorrectly handled multiple EAP-pwd handshakes. An attacker could possibly use this issue to cause a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6580-1 Related CVEs: CVE-2023-4255 CVE-2022-38223 CVE-2018-6196 CVE-2018-6197 CVE-2018-6198 CVE-2016-9422 CVE-2016-9423 CVE-2016-9424  +12 more Upstream summary: It was discovered that w3m incorrectly handled certain HTML files. An attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7398-1 Related CVEs: CVE-2021-33643 CVE-2021-33644 CVE-2021-33645 CVE-2021-33646 Upstream summary: It was discovered that libtar may perform out-of-bounds reads when processing specially crafted tar files. An attacker could possibly use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6398-1 Related CVEs: CVE-2022-26505 CVE-2023-33476 CVE-2020-12695 CVE-2020-28926 Upstream summary: It was discovered that ReadyMedia was vulnerable to DNS rebinding attacks. A remote attacker could possibly use this issue to trick […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7615-2 Related CVEs: CVE-2025-20234 CVE-2025-20260 CVE-2024-20505 CVE-2024-20506 https://launchpad.net/bugs/2046581 CVE-2023-20197 CVE-2023-20032 CVE-2023-20052  +12 more Upstream summary: USN-7615-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 20.04 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7824-3 Related CVEs: CVE-2025-49844 CVE-2024-31228 CVE-2024-46981 CVE-2024-51741 CVE-2022-24834 CVE-2022-35977 CVE-2022-36021 CVE-2023-25155  +2 more Upstream summary: USN-7824-1 fixed several vulnerabilities in Redis. This update provides the corresponding update for Ubuntu 22.04 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5232-1 Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek discovered that certain Fail2ban actions handled whois responses in an insecure way. If Fail2ban was configured to use certain mail actions like […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7662-1 Related CVEs: CVE-2025-6199 CVE-2025-7345 CVE-2022-48622 CVE-2017-12447 CVE-2017-1000422 CVE-2017-6312 CVE-2017-6313 CVE-2017-6314  +6 more Upstream summary: It was discovered that GDK-Pixbuf incorrectly handled certain GIF files. An attacker could possibly use […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7283-1 Related CVEs: CVE-2019-0193 Upstream summary: It was discovered that the Apache Solr DataImportHandler module incorrectly handled certain request parameters in a default configuration. A remote attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5944-1 Related CVEs: CVE-2022-25857 CVE-2022-38749 CVE-2022-38750 CVE-2022-38751 Upstream summary: It was discovered that SnakeYAML did not limit the maximal nested depth for collections when parsing YAML data. If a user […]