Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7768-1 Related CVEs: CVE-2025-6297 CVE-2022-1664 Upstream summary: It was discovered that dpkg incorrectly handled removing certain temporary directories. An attacker could possibly use this issue to consume disk space, leading […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4700-1 Related CVEs: CVE-2019-12761 Upstream summary: Alexandre D'Hondt discovered that PyXDG did not properly sanitize input. An attacker could exploit this with a crafted .menu file to execute arbitrary code. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8092-1 Related CVEs: https://launchpad.net/bugs/2143042 CVE-2025-32462 CVE-2025-32463 CVE-2023-28486 CVE-2023-28487 CVE-2023-27320 CVE-2022-33070 CVE-2023-22809 Upstream summary: It was discovered that Sudo incorrectly checked return codes when dropping privileges to run the mailer. A […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8202-3 Related CVEs: CVE-2026-40164 https://bugs.launchpad.net/ubuntu/+source/jq/+bug/2152052 CVE-2026-39956 CVE-2026-33947 CVE-2026-39979 CVE-2026-33948 CVE-2026-32316 CVE-2024-23337  +1 more Upstream summary: USN-8202-1 fixed vulnerabilities in jq. The update caused a regression for Ubuntu 18.04 LTS and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5194-1 Related CVEs: CVE-2021-34813 Upstream summary: Denis Kasak discovered that Olm was not verifying the length of input being processed by the olm_pk_decrypt module, which introduced a stack-based buffer overflow […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4326-1 Related CVEs: CVE-2018-12641 CVE-2018-12697 CVE-2018-12698 CVE-2018-12934 CVE-2018-17794 CVE-2018-17985 CVE-2018-18483 CVE-2018-18484  +12 more Upstream summary: It was discovered that libiberty incorrectly handled parsing certain binaries. If a user or automated […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8199-1 Related CVEs: CVE-2026-34881 CVE-2024-32498 Upstream summary: Martin Kaesberger discovered that OpenStack Glance's image processing could return the contents of arbitrary files. An attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3703-1 Related CVEs: CVE-2018-10860 Upstream summary: It was discovered that the Archive Zip module incorrectly handled certain inputs. An attacker could possibly use this to access sensitive information. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8024-1 Related CVEs: CVE-2025-11678 CVE-2025-11677 Upstream summary: Raffaele Bova discovered that Libwebsockets incorrectly handled memory when the upgrade header is not valid in the WebSocket server. An attacker could possibly […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7944-1 Related CVEs: CVE-2025-68615 Upstream summary: Bahae Bahrini discovered that Net-SNMP could be made to write out of bounds. If a user or an automated system were tricked into opening […]