Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7679-1 Related CVEs: CVE-2025-6965 CVE-2025-29088 CVE-2022-35737 CVE-2020-35525 CVE-2018-8740 CVE-2019-19603 CVE-2019-19645 CVE-2020-11655  +12 more Upstream summary: It was discovered that SQLite incorrectly handled aggregate terms. An attacker could use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7398-1 Related CVEs: CVE-2021-33643 CVE-2021-33644 CVE-2021-33645 CVE-2021-33646 Upstream summary: It was discovered that libtar may perform out-of-bounds reads when processing specially crafted tar files. An attacker could possibly use this […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6169-1 Related CVEs: CVE-2022-2469 Upstream summary: It was discovered that GNU SASL's GSSAPI server could make an out-of-bounds reads if given specially crafted GSS-API authentication data. A remote attacker could […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7038-2 Related CVEs: CVE-2023-49582 CVE-2021-35940 Upstream summary: USN-7038-1 fixed a vulnerability in Apache Portable Runtime (APR) library. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7367-1 Related CVEs: CVE-2025-2173 CVE-2025-2174 CVE-2025-2175 CVE-2025-2176 CVE-2025-2177 Upstream summary: It was discovered that zvbi incorrectly handled memory when processing user input. An attacker could possibly use this issue to […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7643-1 Related CVEs: CVE-2025-4969 CVE-2025-32914 CVE-2025-4945 CVE-2025-32907 CVE-2025-4948 CVE-2025-4476 CVE-2025-32908 CVE-2025-32906  +12 more Upstream summary: Jan Różański discovered that libsoup incorrectly handled range headers in an HTTP request. An attacker […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7599-1 Related CVEs: CVE-2025-50182 CVE-2025-50181 CVE-2024-37891 CVE-2018-25091 CVE-2023-43804 CVE-2023-45803 CVE-2020-26137 CVE-2018-20060  +2 more Upstream summary: Jacob Sandum discovered that urllib3 handled redirects even when they were explicitly disabled while using […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6116-1 Related CVEs: CVE-2022-29167 Upstream summary: It was discovered that hawk incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5673-1 Related CVEs: CVE-2021-4217 CVE-2022-0529 CVE-2022-0530 https://launchpad.net/bugs/1957077 Upstream summary: It was discovered that unzip did not properly handle unicode strings under certain circumstances. If a user were tricked into opening […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7562-1 Related CVEs: CVE-2024-24549 CVE-2024-34750 CVE-2024-23672 CVE-2023-42795 CVE-2024-38286 CVE-2023-45648 CVE-2023-28708 CVE-2024-21733  +12 more Upstream summary: It was discovered that Tomcat did not include the secure attribute for session cookies when […]