Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4172-2 Related CVEs: CVE-2019-18218 CVE-2014-9620 CVE-2014-9621 CVE-2014-9653 CVE-2015-8865 CVE-2018-10360 CVE-2014-3710 CVE-2014-8116  +9 more Upstream summary: USN-4172-1 fixed a vulnerability in file. This update provides the corresponding update for Ubuntu 12.04 […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8168-1 Related CVEs: CVE-2026-33056 Upstream summary: It was discovered that tar-rs embedded in rustc incorrectly handled symlinks when unpacking a tar archive. If a user or automated system were tricked […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5273-1 Related CVEs: CVE-2021-20266 CVE-2021-20271 CVE-2021-3421 Upstream summary: Demi M. Obenour discovered that RPM Package Manager incorrectly handled certain files. An attacker could possibly use this issue to corrupt the […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6038-2 Related CVEs: CVE-2022-1705 CVE-2022-27664 CVE-2022-28131 CVE-2022-2879 CVE-2022-2880 CVE-2022-29526 CVE-2022-30629 CVE-2022-30630  +10 more Upstream summary: USN-6038-1 fixed several vulnerabilities in Go 1.18. This update provides the corresponding updates for Go […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6520-1 Related CVEs: CVE-2023-25775 CVE-2023-31083 CVE-2023-31085 CVE-2023-3772 CVE-2023-38430 CVE-2023-38432 CVE-2023-3863 CVE-2023-3865  +12 more Upstream summary: Ivan D Barrera, Christopher Bednarz, Mustafa Ismail, and Shiraz Saleem discovered that the InfiniBand RDMA […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8195-1 Related CVEs: https://launchpad.net/bugs/2149908 Upstream summary: It was discovered that PackageKit incorrectly handled certain transactions. A local attacker could use this issue to install arbitrary packages as root, possibly resulting […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4935-1 Related CVEs: CVE-2021-1076 CVE-2021-1077 CVE-2021-1052 CVE-2021-1053 CVE-2021-1056 Upstream summary: It was discovered that the NVIDIA GPU display driver for the Linux kernel incorrectly performed access control. A local attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8168-1 Related CVEs: CVE-2026-33056 Upstream summary: It was discovered that tar-rs embedded in rustc incorrectly handled symlinks when unpacking a tar archive. If a user or automated system were tricked […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8189-1 Related CVEs: CVE-2024-39684 CVE-2024-38517 Upstream summary: It was discovered that RapidJSON did not properly protect against integer overflows in certain instances when parsing JSON text. A remote attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4835-1 Related CVEs: CVE-2018-11099 CVE-2018-11129 CVE-2018-11130 CVE-2019-1010127 Upstream summary: It was discovered that VCFtools improperly handled certain input. If a user were tricked into opening a crafted input file, VCFtools […]