IT, Cloud & DevOps Blog

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5731-1 Related CVEs: CVE-2022-41973 CVE-2022-41974 Upstream summary: It was discovered that multipath-tools incorrectly handled symlinks. A local attacker could possibly use this issue, in combination with other issues, to escalate […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6945-1 Related CVEs: CVE-2024-5290 https://launchpad.net/bugs/2067613 CVE-2021-27803 CVE-2020-12695 CVE-2021-0326 CVE-2019-16275 CVE-2019-11555 CVE-2016-10743  +12 more Upstream summary: Rory McNamara discovered that wpa_supplicant could be made to load arbitrary shared objects by unprivileged […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7742-1 Related CVEs: CVE-2025-32988 CVE-2025-32990 CVE-2025-6395 CVE-2021-4209 https://launchpad.net/bugs/1860656 https://launchpad.net/bugs/1858691 CVE-2018-10844 CVE-2018-10845  +11 more Upstream summary: It was discovered that GnuTLS incorrectly handled exporting Subject Alternative Name (SAN) entries containing an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6102-1 Related CVEs: CVE-2021-21366 CVE-2022-37616 CVE-2022-39353 Upstream summary: It was discovered that xmldom incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5956-2 Related CVEs: CVE-2017-11503 CVE-2016-10033 CVE-2016-10045 CVE-2017-5223 CVE-2018-19296 CVE-2020-13625 CVE-2021-3603 Upstream summary: USN-5956-1 fixed vulnerabilities in PHPMailer. It was discovered that the fix for CVE-2017-11503 was incomplete. This update fixes […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7504-1 Related CVEs: CVE-2025-2866 CVE-2025-1080 CVE-2024-12425 CVE-2024-12426 CVE-2024-6472 CVE-2024-5261 CVE-2024-3044 Upstream summary: Juraj Šarinay discovered that LibreOffice incorrectly handled verifying PDF signatures. A remote attacker could possibly use this issue […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7837-1 Related CVEs: CVE-2025-47219 CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 CVE-2022-2122  +2 more Upstream summary: Shaun Mirani discovered that GStreamer Good Plugins incorrectly handled certain malformed media files. An attacker […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6529-1 Related CVEs: CVE-2021-38562 CVE-2022-25802 CVE-2023-41259 CVE-2023-41260 Upstream summary: It was discovered that Request Tracker incorrectly handled certain inputs. If a user or an automated system were tricked into opening […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7742-1 Related CVEs: CVE-2025-32988 CVE-2025-32990 CVE-2025-6395 CVE-2024-12243 CVE-2024-28834 CVE-2024-28835 CVE-2024-0553 CVE-2024-0567  +8 more Upstream summary: It was discovered that GnuTLS incorrectly handled exporting Subject Alternative Name (SAN) entries containing an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6978-1 Related CVEs: CVE-2016-3674 CVE-2020-26217 CVE-2020-26258 CVE-2020-26259 CVE-2021-21341 CVE-2021-21342 CVE-2021-21343 CVE-2021-21344  +12 more Upstream summary: It was discovered that XStream incorrectly handled parsing of certain crafted XML documents. A remote […]