Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6958-1 Related CVEs: CVE-2017-7960 CVE-2017-8834 CVE-2017-8871 CVE-2020-12825 Upstream summary: It was discovered that Libcroco was incorrectly accessing data structures when reading bytes from memory, which could cause a heap buffer […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6584-1 Related CVEs: CVE-2021-20314 CVE-2021-33912 CVE-2021-33913 Upstream summary: Philipp Jeitner and Haya Shulman discovered that Libspf2 incorrectly handled certain inputs. If a user or an automated system were tricked into […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8113-1 Related CVEs: CVE-2025-61144 CVE-2025-61143 CVE-2025-8961 CVE-2025-9165 CVE-2025-9900 CVE-2025-8177 CVE-2025-8851 CVE-2025-8534  +12 more Upstream summary: It was discovered that LibTIFF did not properly handle memory when processing certain images. An […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8023-1 Related CVEs: CVE-2026-25210 CVE-2026-24515 CVE-2012-1148 CVE-2015-1283 CVE-2016-0718 CVE-2016-4472 CVE-2018-20843 CVE-2019-15903  +11 more Upstream summary: It was discovered that Expat, contained within the xmltok library, incorrectly handled the initialization of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8071-2 Related CVEs: CVE-2026-2781 CVE-2023-0767 CVE-2022-22747 CVE-2022-34480 CVE-2021-43527 CVE-2020-12403 CVE-2020-12400 CVE-2020-12401  +12 more Upstream summary: USN-8071-1 fixed a vulnerability in nss. This update provides the corresponding fix for Ubuntu 14.04 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6477-1 Related CVEs: CVE-2023-4016 CVE-2018-1122 CVE-2018-1123 CVE-2018-1124 CVE-2018-1125 CVE-2018-1126 Upstream summary: It was discovered that the procps-ng ps tool incorrectly handled memory. An attacker could possibly use this issue to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8076-1 Related CVEs: CVE-2024-39936 CVE-2023-51714 CVE-2022-25255 CVE-2020-13962 CVE-2020-17507 CVE-2024-25580 CVE-2023-24607 CVE-2023-32762  +2 more Upstream summary: It was discovered that Qt did not correctly handle OpenSSL's error queue. An attacker could […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7998-1 Related CVEs: CVE-2026-21932 CVE-2026-21933 CVE-2026-21925 CVE-2026-21945 CVE-2025-53057 CVE-2025-53066 CVE-2025-50106 CVE-2025-30754  +12 more Upstream summary: It was discovered that the RMI component of OpenJDK 17 would establish RMI TCP endpoint […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6037-1 Related CVEs: CVE-2021-37533 Upstream summary: ZeddYu Lu discovered that the FTP client from Apache Commons Net trusted the host from PASV responses by default. A remote attacker with a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8023-1 Related CVEs: CVE-2026-25210 CVE-2026-24515 CVE-2012-1148 CVE-2015-1283 CVE-2016-0718 CVE-2016-4472 CVE-2018-20843 CVE-2019-15903  +11 more Upstream summary: It was discovered that Expat, contained within the xmltok library, incorrectly handled the initialization of […]