Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7983-1 Related CVEs: CVE-2025-64329 CVE-2024-25621 CVE-2024-40635 CVE-2023-25153 CVE-2023-25173 CVE-2022-23471 CVE-2022-24769 CVE-2022-24778  +6 more Upstream summary: David Leadbeater discovered that containerd incorrectly set certain directory path permissions. An attacker could possibly […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2431-1 Related CVEs: CVE-2014-8583 CVE-2014-0240 CVE-2014-0242 Upstream summary: It was discovered that mod_wsgi incorrectly handled errors when setting up the working directory and group access rights. A malicious application could […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7912-2 Related CVEs: CVE-2025-58436 https://launchpad.net/bugs/2133207 CVE-2025-61915 CVE-2025-58060 CVE-2025-58364 CVE-2024-47175 https://launchpad.net/bugs/2070315 CVE-2024-35235  +9 more Upstream summary: USN-7912-1 fixed vulnerabilities in CUPS. This update provides the corresponding update for Ubuntu 16.04 LTS, […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7943-1 Related CVEs: CVE-2022-0856 CVE-2021-30498 CVE-2021-30499 CVE-2021-3410 CVE-2018-20544 CVE-2018-20545 CVE-2018-20546 CVE-2018-20547  +2 more Upstream summary: Han Zheng discovered that libcaca incorrectly handled certain images. An attacker could possibly use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6614-1 Related CVEs: CVE-2023-30577 CVE-2022-37703 CVE-2022-37704 CVE-2022-37705 https://launchpad.net/bugs/2012536 Upstream summary: It was discovered that amanda did not properly check certain arguments. A local unprivileged attacker could possibly use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6258-1 Related CVEs: CVE-2023-29932 CVE-2023-29933 CVE-2023-29934 CVE-2023-29939 Upstream summary: It was discovered that LLVM Toolchain did not properly manage memory under certain circumstances. If a user were tricked into opening […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7804-2 Related CVEs: CVE-2025-59362 CVE-2025-62168 CVE-2024-37894 CVE-2023-5824 CVE-2023-49288 https://launchpad.net/bugs/2060880 CVE-2024-23638 CVE-2024-25111  +12 more Upstream summary: USN-7804-1 fixed a vulnerability in Squid. This update provides the corresponding update for Ubuntu 16.04 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6574-1 Related CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39323 CVE-2023-39325 CVE-2023-39326 CVE-2023-44487 CVE-2023-45285 Upstream summary: Takeshi Kaneko discovered that Go did not properly handle comments and special tags in the script context of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6192-1 Related CVEs: CVE-2023-2430 CVE-2023-35788 https://launchpad.net/bugs/2023577 https://launchpad.net/bugs/2023220 Upstream summary: Hangyu Hua discovered that the Flower classifier implementation in the Linux kernel contained an out-of-bounds write vulnerability. An attacker could use […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7904-1 Related CVEs: CVE-2025-59799 CVE-2025-59798 CVE-2024-56827 CVE-2025-48708 CVE-2024-29508 CVE-2025-27836 CVE-2025-27832 CVE-2025-27835  +12 more Upstream summary: Piotr Kajda discovered that Ghostscript incorrectly handled writing certain files. An attacker could possibly use […]