Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8022-1 Related CVEs: CVE-2026-25210 CVE-2026-24515 CVE-2025-59375 CVE-2024-50602 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 CVE-2022-43680  +12 more Upstream summary: It was discovered that Expat incorrectly handled memory when parsing certain XML files. An attacker […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7788-1 Related CVEs: CVE-2018-14682 CVE-2017-11423 CVE-2015-4468 CVE-2018-14680 CVE-2015-4467 CVE-2018-14679 CVE-2015-4472 CVE-2015-4469  +4 more Upstream summary: Jakub Wilk discovered that libmspack did not correctly handle certain integer operations and bounds checking. […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6690-1 Related CVEs: CVE-2023-3966 CVE-2023-5366 CVE-2023-1668 CVE-2022-4337 CVE-2022-4338 CVE-2021-36980 CVE-2020-35498 CVE-2015-8011  +1 more Upstream summary: Timothy Redaelli and Haresh Khandelwal discovered that Open vSwitch incorrectly handled certain crafted Geneve packets […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7958-1 Related CVEs: CVE-2024-8372 CVE-2019-14863 CVE-2025-0716 CVE-2023-26117 CVE-2024-8373 CVE-2025-2336 CVE-2024-21490 CVE-2023-26116  +2 more Upstream summary: It was discovered that AngularJS did not properly sanitize certain `xlink:href` attributes. A remote attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6379-1 Related CVEs: CVE-2021-3618 Upstream summary: It was discovered that vsftpd was vulnerable to the ALPACA TLS protocol content confusion attack. A remote attacker could possibly use this issue to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6298-1 Related CVEs: CVE-2018-7727 CVE-2020-18442 CVE-2018-6381 CVE-2018-6484 CVE-2018-6540 CVE-2018-6541 CVE-2018-6869 CVE-2018-7725  +1 more Upstream summary: Liu Zhu discovered that ZZIPlib incorrectly handled certain inputs. If a user or an automated […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6407-1 Related CVEs: CVE-2023-43785 CVE-2023-43786 CVE-2023-43787 CVE-2023-3138 Upstream summary: Gregory James Duck discovered that libx11 incorrectly handled certain keyboard symbols. If a user were tricked into connecting to a malicious […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7974-1 Related CVEs: CVE-2026-0992 CVE-2026-0990 CVE-2025-8732 CVE-2026-0989 CVE-2025-7425 CVE-2025-9714 CVE-2025-6021 CVE-2025-49794  +12 more Upstream summary: It was discovered that libxml2 incorrectly handled maliciously crafted SGML catalog files. An attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6591-2 Related CVEs: CVE-2023-51764 https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/2049337 https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/2050834 Upstream summary: USN-6591-1 fixed vulnerabilities in Postfix. A fix with less risk of regression has been made available since the last update. This update […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7347-1 Related CVEs: CVE-2024-38439 CVE-2024-38440 CVE-2024-38441 CVE-2021-31439 CVE-2022-0194 CVE-2022-23121 CVE-2022-23122 CVE-2022-23123  +4 more Upstream summary: It was discovered that Netatalk did not properly manage memory under certain circumstances. A remote […]