Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7474-1 Related CVEs: CVE-2023-28840 CVE-2023-28841 CVE-2023-28842 CVE-2024-23651 CVE-2024-23652 CVE-2024-36621 CVE-2024-36623 CVE-2024-41110 Upstream summary: Cory Snider discovered that Docker incorrectly handled networking packet encapsulation. An attacker could use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6210-1 Related CVEs: CVE-2023-34246 Upstream summary: It was discovered that Doorkeeper incorrectly performed authorization checks for public clients that have been previous approved. An attacker could potentially exploit these in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7679-1 Related CVEs: CVE-2025-6965 CVE-2025-29088 CVE-2022-35737 CVE-2020-35525 CVE-2018-8740 CVE-2019-19603 CVE-2019-19645 CVE-2020-11655  +12 more Upstream summary: It was discovered that SQLite incorrectly handled aggregate terms. An attacker could use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7398-1 Related CVEs: CVE-2021-33643 CVE-2021-33644 CVE-2021-33645 CVE-2021-33646 Upstream summary: It was discovered that libtar may perform out-of-bounds reads when processing specially crafted tar files. An attacker could possibly use this […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6169-1 Related CVEs: CVE-2022-2469 Upstream summary: It was discovered that GNU SASL's GSSAPI server could make an out-of-bounds reads if given specially crafted GSS-API authentication data. A remote attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7038-2 Related CVEs: CVE-2023-49582 CVE-2021-35940 Upstream summary: USN-7038-1 fixed a vulnerability in Apache Portable Runtime (APR) library. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7367-1 Related CVEs: CVE-2025-2173 CVE-2025-2174 CVE-2025-2175 CVE-2025-2176 CVE-2025-2177 Upstream summary: It was discovered that zvbi incorrectly handled memory when processing user input. An attacker could possibly use this issue to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7643-1 Related CVEs: CVE-2025-4969 CVE-2025-32914 CVE-2025-4945 CVE-2025-32907 CVE-2025-4948 CVE-2025-4476 CVE-2025-32908 CVE-2025-32906  +12 more Upstream summary: Jan Różański discovered that libsoup incorrectly handled range headers in an HTTP request. An attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5185-1 Related CVEs: CVE-2019-17533 Upstream summary: It was discovered that MATIO incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service or obtain […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7343-1 Related CVEs: CVE-2024-56201 CVE-2024-56326 CVE-2025-27516 CVE-2024-34064 Upstream summary: Rafal Krupinski discovered that Jinja2 did not properly restrict the execution of code in situations where templates are used maliciously. An […]