Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4778-1 Related CVEs: CVE-2015-8869 CVE-2018-9838 Upstream summary: It was discovered that OCaml mishandled sign extensions. A remote attacker could use this vulnerability to steal sensitive information, cause a denial of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8218-1 Related CVEs: CVE-2025-53391 Upstream summary: Aaron Rainbolt discovered that zuluCrypt used insecure PolicyKit settings in zuluPolkit. An attacker could possibly use this issue to cause local privilege escalation to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8045-1 Related CVEs: CVE-2024-31884 CVE-2024-47866 CVE-2018-14662 CVE-2021-3524 CVE-2023-43040 CVE-2016-5009 CVE-2016-7031 CVE-2016-8626  +1 more Upstream summary: Martin Schobert discovered that Ceph did not properly verify SSL certificates when using Pybind for […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4840-1 Related CVEs: CVE-2018-12021 CVE-2018-19295 Upstream summary: It was discovered that Singularity incorrectly handled certain inputs. An attacker could possibly use this issue to obtain sensitive information. (CVE-2018-19295) It was […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5050-1 Related CVEs: CVE-2020-26558 CVE-2021-0129 CVE-2021-28691 CVE-2021-3564 CVE-2021-3573 CVE-2021-38208 CVE-2021-23134 CVE-2021-32399  +12 more Upstream summary: It was discovered that the bluetooth subsystem in the Linux kernel did not properly perform […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7781-1 Related CVEs: CVE-2023-40303 CVE-2020-10188 CVE-2022-39028 CVE-2019-0053 CVE-2021-40491 Upstream summary: Matthew Hickey discovered that Inetutils did not correctly handle certain escape characters. An attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8024-1 Related CVEs: CVE-2025-11678 CVE-2025-11677 Upstream summary: Raffaele Bova discovered that Libwebsockets incorrectly handled memory when the upgrade header is not valid in the WebSocket server. An attacker could possibly […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4947-1 Related CVEs: CVE-2020-35519 CVE-2021-28375 CVE-2021-29646 CVE-2021-29650 CVE-2021-30002 https://launchpad.net/bugs/1924611 CVE-2021-3492 CVE-2021-3493  +12 more Upstream summary: Kiyin (尹亮) discovered that the x25 implementation in the Linux kernel contained overflows when handling […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4587-1 Related CVEs: CVE-2014-6051 CVE-2014-6052 CVE-2014-6053 CVE-2014-6054 CVE-2014-6055 CVE-2016-9941 CVE-2016-9942 CVE-2018-15127  +11 more Upstream summary: Nicolas Ruff discovered that iTALC had buffer overflows, divide-by-zero errors and didn't check malloc return […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7989-1 Related CVEs: CVE-2025-58438 Upstream summary: Pengo Wray discovered that The Internet Archive Python Library incorrectly handled certain file paths when downloading files. An attacker could possibly use this issue […]