Fix Prevention

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6307-1 Related CVEs: CVE-2023-37464 Upstream summary: It was discovered that JOSE for C/C++ AES GCM decryption routine incorrectly uses the Tag length from the actual Authentication Tag provided in the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7572-1 Related CVEs: CVE-2024-28246 CVE-2024-28245 CVE-2025-23207 CVE-2024-28243 Upstream summary: Juho Forsén discovered that KaTeX did not correctly handle certain inputs, which could lead to an infinite loop. If a user […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6243-1 Related CVEs: CVE-2017-18638 CVE-2022-4728 CVE-2022-4729 CVE-2022-4730 Upstream summary: It was discovered that Graphite-Web incorrectly handled certain inputs. If a user or an automated system were tricked into opening a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7827-1 Related CVEs: CVE-2025-47808 CVE-2025-47806 CVE-2025-47807 CVE-2024-47538 CVE-2024-47541 CVE-2024-47542 CVE-2024-47600 CVE-2024-47607  +6 more Upstream summary: Shaun Mirani discovered that GStreamer Base Plugins did not correctly handle certain memory operations. An […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6233-2 Related CVEs: CVE-2017-16516 CVE-2022-24795 CVE-2023-33460 Upstream summary: USN-6233-1 fixed vulnerabilities in YAJL. This update provides the corresponding updates for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, and Ubuntu 23.04. Original […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6179-1 Related CVEs: CVE-2023-1436 CVE-2022-40149 CVE-2022-40150 CVE-2022-45685 CVE-2022-45693 Upstream summary: It was discovered that Jettison incorrectly handled certain inputs. If a user or an automated system were tricked into opening […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7757-1 Related CVEs: CVE-2025-54874 CVE-2025-50952 CVE-2024-56826 CVE-2024-56827 CVE-2021-29338 CVE-2021-3575 CVE-2022-1122 CVE-2023-39327  +8 more Upstream summary: It was discovered that OpenJPEG did not properly handle memory when decompressing certain image files. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5956-2 Related CVEs: CVE-2017-11503 CVE-2016-10033 CVE-2016-10045 CVE-2017-5223 CVE-2018-19296 CVE-2020-13625 CVE-2021-3603 Upstream summary: USN-5956-1 fixed vulnerabilities in PHPMailer. It was discovered that the fix for CVE-2017-11503 was incomplete. This update fixes […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6908-1 Related CVEs: CVE-2019-0221 CVE-2020-9484 CVE-2021-25329 CVE-2018-11784 CVE-2018-1336 CVE-2018-8034 CVE-2017-12616 CVE-2017-12617  +12 more Upstream summary: It was discovered that the Tomcat SSI printenv command echoed user provided data without escaping […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7708-1 Related CVEs: CVE-2025-50420 CVE-2025-52886 CVE-2022-27337 CVE-2025-32364 CVE-2025-32365 CVE-2024-56378 CVE-2020-23804 CVE-2022-37050  +12 more Upstream summary: It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use […]