Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2648-1 Related CVEs: CVE-2015-1323 Upstream summary: Tavis Ormandy discovered that Aptdeamon incorrectly handled the simulate dbus method. A local attacker could use this issue to possibly expose sensitive information, or […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7544-1 Related CVEs: CVE-2025-47273 CVE-2024-6345 CVE-2022-40897 Upstream summary: It was discovered that setuptools did not properly sanitize paths. An attacker could possibly use this issue to write files to arbitrary […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2617-1 Related CVEs: CVE-2015-3202 Upstream summary: Tavis Ormandy discovered that FUSE incorrectly filtered environment variables. A local attacker could use this issue to gain administrative privileges. Table of contents Symptom […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7476-1 Related CVEs: CVE-2021-41125 CVE-2022-0577 CVE-2024-1892 CVE-2024-1968 CVE-2024-3572 CVE-2024-3574 Upstream summary: It was discovered that Scrapy improperly exposed HTTP authentication credentials to request targets, including during redirects. An attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6970-1 Related CVEs: CVE-2023-45897 Upstream summary: It was discovered that exfatprogs incorrectly handled certain memory operations. If a user or automated system were tricked into handling specially crafted exfat partitions, […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7441-1 Related CVEs: CVE-2024-10525 CVE-2024-3935 CVE-2021-34431 CVE-2021-34434 CVE-2021-41039 CVE-2023-0809 CVE-2023-28366 CVE-2023-3592 Upstream summary: It was discovered that Eclipse Mosquitto client incorrectly handled memory when receiving a SUBACK packet. An attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2500-1 Related CVEs: CVE-2013-6424 CVE-2015-0255 Upstream summary: Olivier Fourdan discovered that the X.Org X server incorrectly handled XkbSetGeometry requests resulting in an information leak. An attacker able to connect to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3703-1 Related CVEs: CVE-2018-10860 Upstream summary: It was discovered that the Archive Zip module incorrectly handled certain inputs. An attacker could possibly use this to access sensitive information. Table of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3701-1 Related CVEs: CVE-2018-12910 CVE-2017-2885 https://launchpad.net/bugs/1573494 Upstream summary: It was discovered that libsoup incorrectly handled certain cookie requests. An attacker could possibly use this to cause a denial of service. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6901-1 Related CVEs: CVE-2021-20230 Upstream summary: It was discovered that stunnel did not properly validate client certificates when configured to use both the redirect and verifyChain options. A remote attacker […]