Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6543-1 Related CVEs: CVE-2023-39804 CVE-2022-48303 CVE-2021-20193 CVE-2018-20482 CVE-2019-9923 CVE-2016-6321 Upstream summary: It was discovered that tar incorrectly handled extended attributes in PAX archives. An attacker could use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6692-1 Related CVEs: CVE-2022-25647 Upstream summary: It was discovered that Gson incorrectly handled deserialization of untrusted input data. If a user or an automated system were tricked into opening a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6408-2 Related CVEs: CVE-2023-43786 CVE-2023-43787 CVE-2023-43788 CVE-2023-43789 CVE-2022-44617 CVE-2022-46285 CVE-2022-4883 CVE-2016-10164 Upstream summary: USN-6408-1 fixed several vulnerabilities in libXpm. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6830-1 Related CVEs: CVE-2024-5564 Upstream summary: It was discovered that libndp incorrectly handled certain malformed IPv6 router advertisement packets. A local attacker could use this issue to cause NetworkManager to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6708-1 Related CVEs: CVE-2023-46045 Upstream summary: It was discovered that Graphviz incorrectly handled certain config6a files. An attacker could possibly use this issue to cause a denial of service. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7093-1 Related CVEs: CVE-2024-49767 CVE-2024-34069 CVE-2023-23934 CVE-2023-25577 Upstream summary: It was discovered that Werkzeug incorrectly handled multiple form submission requests. A remote attacker could possibly use this issue to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6731-1 Related CVEs: CVE-2017-17042 CVE-2019-1020001 CVE-2024-27285 Upstream summary: It was discovered that YARD before 0.9.11 does not block relative paths with an initial ../ sequence, which allows attackers to conduct […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7034-1 Related CVEs: https://launchpad.net/bugs/2081875 https://launchpad.net/bugs/2020089 https://launchpad.net/bugs/1998785 Upstream summary: The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.64 version of the […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6334-1 Related CVEs: CVE-2020-6097 CVE-2021-41054 CVE-2021-46671 CVE-2019-11365 CVE-2019-11366 Upstream summary: Peter Wang discovered that atftp did not properly manage certain inputs. A remote attacker could send a specially crafted tftp […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6858-1 Related CVEs: CVE-2023-49990 CVE-2023-49991 CVE-2023-49992 CVE-2023-49993 CVE-2023-49994 Upstream summary: It was discovered that eSpeak NG did not properly manage memory under certain circumstances. An attacker could possibly use this […]