Fix Prevention

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7437-1 Related CVEs: CVE-2022-1325 CVE-2024-26540 Upstream summary: It was discovered that the CImg library did not properly check the size of images before loading them. An attacker could possibly use […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7112-1 Related CVEs: CVE-2021-40812 Upstream summary: It was discovered that the GD Graphics Library did not perform proper bounds checking while handling BMP and WebP files. If a user were […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7603-1 Related CVEs: CVE-2024-35241 CVE-2024-35242 CVE-2024-24821 CVE-2023-43655 CVE-2022-24828 CVE-2021-29472 Upstream summary: Thomas Chauchefoin discovered that Composer did not correctly handle certain arguments. An attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7160-1 Related CVEs: CVE-2021-29063 Upstream summary: It was discovered Mpmath incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Mpmath to consume resources, leading to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7118-1 Related CVEs: CVE-2023-40889 CVE-2023-40890 Upstream summary: It was discovered that ZBar did not properly handle certain QR codes. If a user or automated system using ZBar were tricked into […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4405-1 Related CVEs: CVE-2020-13645 Upstream summary: It was discovered that glib-networking skipped hostname certificate verification if the application failed to specify the server identity. A remote attacker could use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7405-1 Related CVEs: CVE-2016-7142 CVE-2019-20917 CVE-2020-25269 Upstream summary: It was discovered that InspIRCd did not correctly handle certificate fingerprints, which could lead to spoofing. A remote attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7544-1 Related CVEs: CVE-2025-47273 CVE-2024-6345 CVE-2022-40897 Upstream summary: It was discovered that setuptools did not properly sanitize paths. An attacker could possibly use this issue to write files to arbitrary […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7354-1 Related CVEs: CVE-2024-21543 Upstream summary: Diego Cebrián discovered that djoser did not properly handle user authentication. An attacker with valid credentials could possibly use this to bypass authentication checks, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7398-1 Related CVEs: CVE-2021-33643 CVE-2021-33644 CVE-2021-33645 CVE-2021-33646 Upstream summary: It was discovered that libtar may perform out-of-bounds reads when processing specially crafted tar files. An attacker could possibly use this […]