Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7762-1 Related CVEs: CVE-2023-32681 CVE-2024-3651 CVE-2023-45803 CVE-2024-47081 https://launchpad.net/bugs/2031880 CVE-2025-50181 CVE-2024-37891 CVE-2018-25091  +2 more Upstream summary: Dennis Brinkrolf and Tobias Funke discovered that Requests incorrectly leaked Proxy-Authorization headers. A remote attacker […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7643-1 Related CVEs: CVE-2025-4969 CVE-2025-32914 CVE-2025-4945 CVE-2025-32907 CVE-2025-4948 CVE-2025-32053 CVE-2024-52531 CVE-2025-32052  +12 more Upstream summary: Jan Różański discovered that libsoup incorrectly handled range headers in an HTTP request. An attacker […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5673-1 Related CVEs: CVE-2021-4217 CVE-2022-0529 CVE-2022-0530 https://launchpad.net/bugs/1957077 CVE-2014-9913 CVE-2016-9844 CVE-2018-1000035 CVE-2018-18384  +1 more Upstream summary: It was discovered that unzip did not properly handle unicode strings under certain circumstances. If […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6322-1 Related CVEs: CVE-2018-16062 CVE-2018-16403 CVE-2018-18310 CVE-2018-18520 CVE-2018-18521 CVE-2019-7149 CVE-2019-7150 CVE-2019-7665  +12 more Upstream summary: It was discovered that elfutils incorrectly handled certain malformed files. If a user or automated […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7573-2 Related CVEs: CVE-2025-49175 CVE-2025-49176 CVE-2025-49178 CVE-2025-49179 CVE-2025-49180 CVE-2025-26594 CVE-2025-26595 CVE-2025-26596  +12 more Upstream summary: USN-7573-1 fixed several vulnerabilities in X.Org. This update provides the corresponding update for Ubuntu 16.04 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7320-1 Related CVEs: CVE-2023-5520 CVE-2024-0321 CVE-2024-0322 Upstream summary: It was discovered that the GPAC MP4Box utility incorrectly handled certain AC3 files, which could lead to an out-of-bounds read. A remote […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5561-1 Related CVEs: CVE-2021-45085 CVE-2021-45086 CVE-2021-45087 CVE-2022-29536 Upstream summary: It was discovered that GNOME Web incorrectly filtered certain strings. A remote attacker could use this issue to perform cross-site scripting […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7562-1 Related CVEs: CVE-2024-24549 CVE-2024-34750 CVE-2024-23672 CVE-2023-42795 CVE-2024-38286 CVE-2023-45648 CVE-2023-28708 CVE-2024-21733  +12 more Upstream summary: It was discovered that Tomcat did not include the secure attribute for session cookies when […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6086-1 Related CVEs: CVE-2022-3517 Upstream summary: It was discovered that minimatch incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7272-1 Related CVEs: CVE-2022-24894 CVE-2022-24895 CVE-2023-46734 CVE-2024-50340 CVE-2024-50341 CVE-2024-50342 CVE-2024-50343 CVE-2024-50345  +1 more Upstream summary: Soner Sayakci discovered that Symfony incorrectly handled cookie storage in the web cache. An attacker […]