Fix Prevention

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3727-1 Related CVEs: CVE-2015-6644 CVE-2015-7940 CVE-2016-1000338 CVE-2016-1000339 CVE-2016-1000341 CVE-2016-1000342 CVE-2016-1000343 CVE-2016-1000345  +1 more Upstream summary: It was discovered that Bouncy Castle incorrectly handled certain crypto algorithms. A remote attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7409-1 Related CVEs: CVE-2025-25291 CVE-2025-25292 CVE-2025-25293 CVE-2016-5697 CVE-2017-11428 CVE-2024-45409 Upstream summary: It was discovered that ruby-saml did not correctly handle XML parsing. An attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7115-1 Related CVEs: CVE-2024-49768 CVE-2024-49769 Upstream summary: It was discovered that Waitress could process follow up requests when receiving a specially crafted message. An attacker could use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2455-1 Related CVEs: CVE-2014-7844 Upstream summary: It was discovered that bsd-mailx contained a feature that allowed syntactically valid email addresses to be treated as shell commands. A remote attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6899-1 Related CVEs: CVE-2024-6655 Upstream summary: It was discovered that GTK would attempt to load modules from the current directory, contrary to expectations. If users started GTK applications from shared […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7063-1 Related CVEs: CVE-2024-6388 Upstream summary: Marco Trevisan discovered that the Ubuntu Advantage Desktop Daemon leaked the Pro token to unprivileged users by passing the token as an argument in […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6855-1 Related CVEs: CVE-2024-36600 Upstream summary: Mansour Gashasbi discovered that libcdio incorrectly handled certain memory operations when parsing an ISO file, leading to a buffer overflow vulnerability. An attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3539-1 Related CVEs: CVE-2017-17784 CVE-2017-17785 CVE-2017-17786 CVE-2017-17787 CVE-2017-17788 CVE-2017-17789 CVE-2016-4994 Upstream summary: It was discovered that GIMP incorrectly handled certain images. If a user were tricked into opening a specially […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6852-1 Related CVEs: CVE-2024-38428 Upstream summary: It was discovered that Wget incorrectly handled semicolons in the userinfo subcomponent of a URI. A remote attacker could possibly trick a user into […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7340-1 Related CVEs: CVE-2017-12166 CVE-2024-5594 CVE-2022-0547 CVE-2020-11810 CVE-2020-15078 Upstream summary: It was discovered that OpenVPN did not perform proper input validation when generating a TLS key under certain configuration, which […]