Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5133-1 Related CVEs: CVE-2020-21913 CVE-2020-10531 CVE-2017-15422 CVE-2017-14952 CVE-2017-7867 CVE-2017-7868 CVE-2014-9911 CVE-2015-4844  +3 more Upstream summary: It was discovered that ICU contains a use after free issue. An attacker could use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8169-1 Related CVEs: CVE-2025-49844 CVE-2022-24834 CVE-2024-31449 Upstream summary: It was discovered that Redis incorrectly handled certain specially crafted Lua scripts. A remote attacker could possibly use this issue to cause […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5331-2 Related CVEs: CVE-2018-16301 CVE-2020-8037 Upstream summary: USN-5331-1 fixed several vulnerabilities in tcpdump. This update provides the corresponding update for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. Original advisory details: […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4053-1 Related CVEs: CVE-2019-12447 CVE-2019-12448 CVE-2019-12449 CVE-2019-12795 CVE-2019-3827 Upstream summary: It was discovered that GVfs incorrectly handled the admin backend. Files created or moved by the admin backend could end […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8133-1 Related CVEs: CVE-2026-32597 https://launchpad.net/bugs/1986487 CVE-2022-29217 Upstream summary: It was discovered that PyJWT did not validate the critical header parameter, contrary to the RFC specification expectations. A remote attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4834-1 Related CVEs: CVE-2018-10847 Upstream summary: It was discovered that Prosody incorrectly validated the virtual host associated with a user session across stream restarts. A remote attacker could use this […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8138-2 Related CVEs: CVE-2026-33056 Upstream summary: USN-8138-1 fixed a vulnerability in tar-rs. This update provides the corresponding update for Ubuntu 20.04 LTS. Original advisory details: It was discovered that tar-rs […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8103-2 Related CVEs: CVE-2025-55304 https://bugs.launchpad.net/ubuntu/+source/gimp/+bug/2144731 CVE-2026-27596 CVE-2026-25884 CVE-2020-18899 CVE-2025-54080 CVE-2026-27631 CVE-2020-18771 Upstream summary: USN-8103-1 fixed vulnerabilities in Exiv2. The update caused a regression for Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4731-1 Related CVEs: CVE-2020-15250 Upstream summary: It was discovered that JUnit 4 contains a local information disclosure vulnerability. An attacker could possibly use this issue to obtain sensitive information. Table […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8276-1 Related CVEs: CVE-2020-26237 Upstream summary: It was discovered that Highlight.js used plain JavaScript objects for internal language name lookups, making them susceptible to prototype pollution attacks. An attacker could […]