Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7814-1 Related CVEs: CVE-2024-23837 CVE-2025-53537 CVE-2024-28871 CVE-2024-45797 Upstream summary: It was discovered that LibHTP did not correctly handle certain HTTP headers. A remote attacker could possibly use this issue to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7660-1 Related CVEs: CVE-2023-34823 CVE-2022-37781 CVE-2022-36148 CVE-2023-34824 Upstream summary: It was discovered that fdkaac did not correctly handle certain input. If a user or automated system were tricked into opening […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4194-1 Related CVEs: CVE-2019-3466 Upstream summary: Rich Mirch discovered that the postgresql-common pg_ctlcluster script incorrectly handled directory creation. A local attacker could possibly use this issue to escalate privileges. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7688-1 Related CVEs: CVE-2022-27239 CVE-2021-20208 CVE-2020-14342 CVE-2022-29869 Upstream summary: Aurélien Aptel discovered that cifs-utils invoked a shell when requesting a password. In certain environments, a local attacker could possibly use […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7209-1 Related CVEs: CVE-2023-44441 Upstream summary: Jacob Boerema discovered that the GIMP DDS Plugin incorrectly processed DDS files due to a memory issue. An attacker could exploit this through a […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4160-1 Related CVEs: CVE-2018-19518 Upstream summary: It was discovered that UW IMAP incorrectly handled inputs. A remote attacker could possibly use this issue to execute arbitrary OS commands. Table of […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7878-1 Related CVEs: CVE-2025-64503 CVE-2025-57812 CVE-2025-64524 CVE-2024-47176 CVE-2023-24805 Upstream summary: It was discovered that cups-filters incorrectly handled certain malformed TIFF image files. A remote attacker could use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-2923-1 Related CVEs: CVE-2016-2510 Upstream summary: Alvaro Muñoz and Christian Schneider discovered that BeanShell incorrectly handled deserialization. A remote attacker could possibly use this issue to execute arbitrary code. Table […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7677-1 Related CVEs: CVE-2024-6174 CVE-2024-11584 https://launchpad.net/bugs/2020375 CVE-2023-1786 https://bugs.launchpad.net/cloud-init/+bug/2013967 CVE-2022-2084 Upstream summary: Harry Sintonen discovered that the hotplugd socket in cloud-init was world writable. An attacker could possibly use this issue […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7446-1 Related CVEs: CVE-2025-31492 Upstream summary: It was discovered that mod_auth_openidc incorrectly handled certain POST requests. An attacker could possibly use this issue to obtain sensitive information. Table of contents […]