Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5903-1 Related CVEs: CVE-2022-22707 CVE-2022-41556 Upstream summary: It was discovered that lighttpd incorrectly handled certain inputs, which could result in a stack buffer overflow. A remote attacker could possibly use […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6895-3 Related CVEs: CVE-2023-52631 CVE-2023-52637 CVE-2023-52638 CVE-2023-52642 CVE-2023-52643 CVE-2023-52645 CVE-2023-52880 CVE-2023-6270  +12 more Upstream summary: It was discovered that the ATA over Ethernet (AoE) driver in the Linux kernel contained […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5697-1 Related CVEs: CVE-2022-3100 CVE-2022-23451 CVE-2022-23452 Upstream summary: Douglas Mendizabal discovered that Barbican incorrectly handled certain query strings. A remote attacker could possibly use this issue to bypass the access […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7013-1 Related CVEs: CVE-2024-23184 CVE-2024-23185 CVE-2022-30550 CVE-2021-29157 CVE-2021-33515 CVE-2020-24386 CVE-2020-25275 CVE-2020-12100  +5 more Upstream summary: It was discovered that Dovecot incorrectly handled a large number of address headers. A remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6978-1 Related CVEs: CVE-2016-3674 CVE-2020-26217 CVE-2020-26258 CVE-2020-26259 CVE-2021-21341 CVE-2021-21342 CVE-2021-21343 CVE-2021-21344  +12 more Upstream summary: It was discovered that XStream incorrectly handled parsing of certain crafted XML documents. A remote […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5631-1 Related CVEs: CVE-2018-11813 CVE-2020-17541 CVE-2020-35538 CVE-2021-46822 CVE-2020-13790 Upstream summary: It was discovered that libjpeg-turbo incorrectly handled certain EOF characters. An attacker could possibly use this issue to cause libjpeg-turbo […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6886-1 Related CVEs: CVE-2023-45288 CVE-2023-45289 CVE-2023-45290 CVE-2024-24783 CVE-2024-24784 CVE-2024-24785 CVE-2024-24788 CVE-2024-24789  +8 more Upstream summary: It was discovered that the Go net/http module did not properly handle the requests when […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8173-1 Related CVEs: CVE-2025-7519 CVE-2026-4897 Upstream summary: It was discovered that polkit incorrectly handled nested elements in XML policy files. If an administrator were tricked into installing a malicious policy […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5069-1 Related CVEs: CVE-2021-3639 CVE-2019-13038 CVE-2019-3877 CVE-2019-3878 Upstream summary: It was discovered that mod-auth-mellon incorrectly filtered certain URLs. A remote attacker could possibly use this issue to perform an open […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6608-1 Related CVEs: CVE-2023-6606 CVE-2023-6817 CVE-2023-6931 CVE-2023-6932 CVE-2024-0193 CVE-2023-37453 CVE-2023-3773 CVE-2023-39189  +12 more Upstream summary: It was discovered that the CIFS network file system implementation in the Linux kernel did […]