Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4775-1 Related CVEs: CVE-2015-3200 CVE-2018-19052 Upstream summary: It was discovered that Lighttpd did not properly sanitized the string used in basic HTTP authentication method. A remote attacker could use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4937-2 Related CVEs: https://launchpad.net/bugs/1929304 CVE-2021-28650 https://launchpad.net/bugs/1917812 CVE-2020-36241 Upstream summary: USN-4937-1 fixed a vulnerability in GNOME Autoar. The update caused a regression when extracting certain archives. This update fixes the problem. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4677-1 Related CVEs: CVE-2020-29361 CVE-2020-29362 CVE-2020-29363 Upstream summary: David Cook discovered that p11-kit incorrectly handled certain memory operations. An attacker could use this issue to cause p11-kit to crash, resulting […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6252-1 Related CVEs: CVE-2022-1184 CVE-2022-3303 CVE-2023-1611 CVE-2023-1670 CVE-2023-1859 CVE-2023-1990 CVE-2023-2124 CVE-2023-3090  +12 more Upstream summary: It was discovered that the ext4 file system implementation in the Linux kernel contained a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8054-1 Related CVEs: CVE-2025-53367 CVE-2021-46312 Upstream summary: It was discovered that DjVuLibre could be forced to execute a division by zero in certain instances. A remote attacker could possibly use […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5849-1 Related CVEs: CVE-2022-45142 CVE-2021-44758 CVE-2022-3437 CVE-2022-42898 CVE-2022-44640 CVE-2022-41916 CVE-2018-16860 CVE-2019-12098  +2 more Upstream summary: Helmut Grohne discovered that Heimdal GSSAPI incorrectly handled logical conditions that are related to memory […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4640-1 Related CVEs: CVE-2020-16123 CVE-2020-11931 https://launchpad.net/bugs/1877102 Upstream summary: James Henstridge discovered that an Ubuntu-specific patch caused PulseAudio to incorrectly handle snap client connections. An attacker could possibly use this to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8040-1 Related CVEs: CVE-2026-25506 Upstream summary: Titouan Lazard discovered that MUNGE contained an exploitable buffer overflow in munged (the MUNGE authentication daemon). A local attacker could possibly use this issue […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3398-1 Related CVEs: CVE-2017-7771 CVE-2017-7772 CVE-2017-7773 CVE-2017-7774 CVE-2017-7775 CVE-2017-7776 CVE-2017-7777 CVE-2017-7778  +12 more Upstream summary: Holger Fuhrmannek and Tyson Smith discovered that graphite2 incorrectly handled certain malformed fonts. If a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4556-1 Related CVEs: CVE-2005-1513 CVE-2005-1514 CVE-2005-1515 CVE-2020-3811 CVE-2020-3812 Upstream summary: It was discovered that netqmail did not properly handle certain input. Both remote and local attackers could use this vulnerability […]