Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5658-1 Related CVEs: CVE-2022-2928 CVE-2022-2929 CVE-2021-25217 CVE-2019-6470 Upstream summary: It was discovered that DHCP incorrectly handled option reference counting. A remote attacker could possibly use this issue to cause DHCP […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7562-1 Related CVEs: CVE-2024-24549 CVE-2024-34750 CVE-2024-23672 CVE-2023-42795 CVE-2024-38286 CVE-2023-45648 CVE-2023-28708 CVE-2024-21733  +10 more Upstream summary: It was discovered that Tomcat did not include the secure attribute for session cookies when […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7573-2 Related CVEs: CVE-2025-49175 CVE-2025-49176 CVE-2025-49178 CVE-2025-49179 CVE-2025-49180 CVE-2025-26594 CVE-2025-26595 CVE-2025-26596  +12 more Upstream summary: USN-7573-1 fixed several vulnerabilities in X.Org. This update provides the corresponding update for Ubuntu 16.04 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6112-1 Related CVEs: CVE-2023-31484 CVE-2020-16156 CVE-2020-10543 CVE-2020-10878 CVE-2020-12723 CVE-2018-18311 CVE-2018-18312 CVE-2018-18313  +12 more Upstream summary: It was discovered that Perl was not properly verifying TLS certificates when using CPAN together […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7317-1 Related CVEs: CVE-2022-23303 CVE-2022-23304 CVE-2022-37660 CVE-2024-5290 https://launchpad.net/bugs/2067613 Upstream summary: George Chatzisofroniou and Panayiotis Kotzanikolaou discovered that wpa_supplicant and hostapd reused encryption elements in the PKEX protocol. An attacker could […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7358-1 Related CVEs: CVE-2024-10976 CVE-2024-10977 CVE-2024-10978 CVE-2024-10979 CVE-2024-7348 CVE-2024-0985 CVE-2023-5869 CVE-2023-5870  +12 more Upstream summary: Wolfgang Walther discovered that PostgreSQL incorrectly tracked tables with row security. A remote attacker could […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6067-1 Related CVEs: CVE-2021-20267 CVE-2021-38598 CVE-2021-40085 CVE-2021-40797 CVE-2022-3277 Upstream summary: David Sinquin discovered that OpenStack Neutron incorrectly handled the default Open vSwitch firewall rules. An attacker could possibly use this […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7231-1 Related CVEs: CVE-2023-27783 CVE-2023-27784 CVE-2023-27785 CVE-2023-27786 CVE-2023-27787 CVE-2023-27788 CVE-2023-27789 CVE-2023-4256  +1 more Upstream summary: It was discovered that Tcpreplay incorrectly handled memory when using the tcprewrite utility. A remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7270-2 Related CVEs: CVE-2025-26465 CVE-2023-51385 CVE-2023-48795 https://launchpad.net/bugs/2030275 CVE-2023-38408 CVE-2021-41617 CVE-2019-6111 CVE-2018-20685  +10 more Upstream summary: USN-7270-1 fixed a vulnerability in OpenSSH. This update provides the corresponding update for Ubuntu 16.04 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5973-1 Related CVEs: CVE-2018-3774 CVE-2020-8124 CVE-2021-27515 CVE-2021-3664 CVE-2022-0512 CVE-2022-0639 CVE-2022-0686 CVE-2022-0691 Upstream summary: It was discovered that url-parse incorrectly handled certain inputs. If a user or an automated system were […]