IT, Cloud & DevOps Blog

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8109-1 Related CVEs: CVE-2023-27635 Upstream summary: Jakub Wilk discovered that debmany in Debian Goodies incorrectly handled certain deb files. An attacker could possibly use this issue to execute arbitrary shell […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7206-2 Related CVEs: https://launchpad.net/bugs/2095004 CVE-2024-12084 CVE-2024-12085 CVE-2024-12086 CVE-2024-12087 CVE-2024-12088 CVE-2024-12747 CVE-2017-16548  +5 more Upstream summary: USN-7206-1 fixed vulnerabilities in rsync. The update introduced a regression in rsync. This update fixes […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7957-1 Related CVEs: CVE-2025-43531 CVE-2025-43529 CVE-2025-14174 CVE-2025-43501 CVE-2025-43535 CVE-2025-43536 CVE-2025-43541 CVE-2025-66287  +12 more Upstream summary: Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7558-1 Related CVEs: CVE-2023-50186 CVE-2024-0444 CVE-2025-3887 Upstream summary: It was discovered that the AV1 codec plugin in GStreamer could be made to write out of bounds. An attacker could possibly […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6558-1 Related CVEs: CVE-2018-13440 CVE-2018-17095 CVE-2019-13147 CVE-2022-24599 Upstream summary: It was discovered that audiofile could be made to dereference invalid memory. If a user or an automated system were tricked […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7904-1 Related CVEs: CVE-2025-59799 CVE-2025-59798 CVE-2024-56827 CVE-2025-48708 CVE-2024-29508 CVE-2025-27836 CVE-2025-27832 CVE-2025-27835  +12 more Upstream summary: Piotr Kajda discovered that Ghostscript incorrectly handled writing certain files. An attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5998-1 Related CVEs: CVE-2022-23302 CVE-2022-23305 CVE-2022-23307 CVE-2019-17571 CVE-2021-4104 Upstream summary: It was discovered that the SocketServer component of Apache Log4j 1.2 incorrectly handled deserialization. An attacker could possibly use this […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7918-1 Related CVEs: CVE-2025-58057 CVE-2025-58056 CVE-2025-59419 CVE-2022-24823 CVE-2024-29025 CVE-2020-11612 CVE-2021-21290 CVE-2021-21295  +12 more Upstream summary: Jeppe Bonde Weikop discovered that Netty incorrectly parsed HTTP messages. When Netty is used with […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7827-1 Related CVEs: CVE-2025-47808 CVE-2025-47806 CVE-2025-47807 CVE-2024-47538 CVE-2024-47541 CVE-2024-47542 CVE-2024-47600 CVE-2024-47607  +6 more Upstream summary: Shaun Mirani discovered that GStreamer Base Plugins did not correctly handle certain memory operations. An […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6281-1 Related CVEs: CVE-2020-13936 Upstream summary: Alvaro Munoz discovered that Velocity Engine incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted […]