Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8110-1 Related CVEs: CVE-2021-4456 Upstream summary: Dave Rolsky discovered that Net-CIDR did not properly sanitize IP addresses. An attacker could possibly use this to bypass IP-based restrictions. Table of contents […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8191-1 Related CVEs: CVE-2024-47554 CVE-2021-29425 Upstream summary: It was discovered that Apache Commons IO's XmlStreamReader class could excessively consume CPU resources under certain circumstances. An attacker could possibly use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7330-1 Related CVEs: CVE-2015-3908 CVE-2015-6240 CVE-2016-8614 CVE-2019-10206 CVE-2019-14846 CVE-2019-14904 CVE-2020-10729 CVE-2020-1739 Upstream summary: It was discovered that Ansible did not properly verify certain fields of X.509 certificates. An attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4594-1 Related CVEs: CVE-2018-1000178 CVE-2018-1000179 Upstream summary: It was discovered that Quassel incorrectly handled Qdatastream protocol. A remote attacker could possibly use this issue to execute arbitrary code. (CVE-2018-1000178) It […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7929-1 Related CVEs: CVE-2025-66004 Upstream summary: It was discovered that usbmuxd incorrectly handled certain paths received with the SavePairRecord command. A local attacker could possibly use this issue to delete […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7695-1 Related CVEs: CVE-2022-23837 CVE-2021-30151 Upstream summary: Anas Roubi discovered that Sidekiq did not correctly sanitize certain inputs. An attacker could possibly use this issue to execute a cross-site scripting […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8133-1 Related CVEs: CVE-2026-32597 CVE-2022-29217 Upstream summary: It was discovered that PyJWT did not validate the critical header parameter, contrary to the RFC specification expectations. A remote attacker could possibly […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4489-1 Related CVEs: CVE-2020-14386 CVE-2020-14356 CVE-2020-12655 CVE-2020-12771 CVE-2020-15393 CVE-2020-24394 CVE-2019-16089 CVE-2019-19462  +12 more Upstream summary: Or Cohen discovered that the AF_PACKET implementation in the Linux kernel did not properly perform […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7625-1 Related CVEs: CVE-2018-19960 CVE-2022-21689 Upstream summary: It was discovered that OnionShare could be exploited when run with the –debug argument. A local attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5069-1 Related CVEs: CVE-2021-3639 Upstream summary: It was discovered that mod-auth-mellon incorrectly filtered certain URLs. A remote attacker could possibly use this issue to perform an open redirect attack. Table […]