Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6858-1 Related CVEs: CVE-2023-49990 CVE-2023-49991 CVE-2023-49992 CVE-2023-49993 CVE-2023-49994 Upstream summary: It was discovered that eSpeak NG did not properly manage memory under certain circumstances. An attacker could possibly use this […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8068-1 Related CVEs: CVE-2025-31648 CVE-2025-20053 CVE-2025-22839 CVE-2025-22840 CVE-2025-20109 CVE-2025-24305 CVE-2025-26403 CVE-2025-21090  +12 more Upstream summary: Sergiu Ghetie discovered that some Intel® processors did not properly handle values in the microcode […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8068-1 Related CVEs: CVE-2025-31648 CVE-2025-20053 CVE-2025-22839 CVE-2025-22840 CVE-2025-20109 CVE-2025-24305 CVE-2025-26403 CVE-2025-21090  +12 more Upstream summary: Sergiu Ghetie discovered that some Intel® processors did not properly handle values in the microcode […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6478-1 Related CVEs: CVE-2023-46316 Upstream summary: It was discovered that Traceroute did not properly parse command line arguments. An attacker could possibly use this issue to execute arbitrary commands. Table […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8058-1 Related CVEs: CVE-2025-53074 CVE-2025-0634 CVE-2025-53075 CVE-2021-31315 CVE-2021-31317 CVE-2021-31318 CVE-2021-31319 CVE-2021-31320  +2 more Upstream summary: It was discovered that rlottie did not properly handle certain inputs. An attacker could use […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8001-1 Related CVEs: CVE-2026-21933 CVE-2026-21932 CVE-2026-21945 CVE-2026-21925 CVE-2025-53066 CVE-2025-53057 CVE-2025-30761 CVE-2025-30754  +12 more Upstream summary: It was discovered that the RMI component of OpenJDK 11 would establish RMI TCP endpoint […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6731-1 Related CVEs: CVE-2017-17042 CVE-2019-1020001 CVE-2024-27285 Upstream summary: It was discovered that YARD before 0.9.11 does not block relative paths with an initial ../ sequence, which allows attackers to conduct […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8023-1 Related CVEs: CVE-2026-25210 CVE-2026-24515 CVE-2012-1148 CVE-2015-1283 CVE-2016-0718 CVE-2016-4472 CVE-2018-20843 CVE-2019-15903  +11 more Upstream summary: It was discovered that Expat, contained within the xmltok library, incorrectly handled the initialization of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8010-1 Related CVEs: CVE-2025-66418 CVE-2026-21441 CVE-2025-47273 CVE-2024-37891 CVE-2018-25091 CVE-2023-43804 CVE-2023-45803 https://launchpad.net/bugs/2009130  +2 more Upstream summary: Several security issues were discovered in the libraries bundled in pip. An attacker could possibly […]