Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5280-1 Related CVEs: CVE-2020-23903 Upstream summary: It was discovered that Speex incorrectly handled certain WAV files. An attacker could possibly use this issue to cause a denial of service. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7590-1 Related CVEs: CVE-2022-23305 CVE-2022-23302 CVE-2022-23307 Upstream summary: It was discovered that several deserialization issues existed within Apache Log4j. An attacker could possibly use these issues to enable the execution […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3796-1 Related CVEs: CVE-2018-1000805 CVE-2018-7750 Upstream summary: Daniel Hoffman discovered that Paramiko incorrectly handled authentication when being used as a server. A remote attacker could use this issue to bypass […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4661-1 Related CVEs: CVE-2020-27348 https://launchpad.net/bugs/1901572 Upstream summary: It was discovered that Snapcraft includes the current directory when configuring LD_LIBRARY_PATH for application commands. If a user were tricked into installing a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7417-1 Related CVEs: CVE-2016-1249 CVE-2016-1251 CVE-2017-10788 CVE-2017-10789 CVE-2014-9906 CVE-2015-8949 CVE-2016-1246 Upstream summary: It was discovered that libdbd-mysql-perl did not correctly handle certain SQL queries. An attacker could possibly use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8045-1 Related CVEs: CVE-2024-31884 CVE-2024-47866 CVE-2024-48916 CVE-2023-43040 CVE-2021-3979 CVE-2022-0670 CVE-2022-3650 CVE-2022-3854 Upstream summary: Martin Schobert discovered that Ceph did not properly verify SSL certificates when using Pybind for secure mail […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8214-1 Related CVEs: CVE-2025-14009 CVE-2021-3842 CVE-2021-43854 CVE-2021-3828 Upstream summary: It was discovered that NLTK incorrectly handled file extraction when opening a maliciously crafted zip file. An attacker could possibly use […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5157-1 Related CVEs: CVE-2021-40347 Upstream summary: It was discovered that Postorius mishandled specially crafted input. An attacker could use this vulnerability that obtain sensitive information. Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8027-1 Related CVEs: CVE-2026-24486 CVE-2024-53981 CVE-2024-24762 Upstream summary: It was discovered that Python-Multipart incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause Python-Multipart to consume […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8198-1 Related CVEs: CVE-2026-31958 CVE-2026-35536 CVE-2025-67724 CVE-2025-67725 CVE-2025-67726 CVE-2023-28370 CVE-2024-52804 Upstream summary: It was discovered that Tornado incorrectly handled parsing of large multipart request bodies. An attacker could possibly use […]