Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8144-1 Related CVEs: CVE-2025-12543 Upstream summary: It was discovered that Undertow incorrectly validated the Host header in incoming HTTP requests. A remote attacker could possibly use this issue to gain […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3369-1 Related CVEs: CVE-2017-10978 CVE-2017-10979 CVE-2017-10980 CVE-2017-10981 CVE-2017-10982 CVE-2017-10983 CVE-2017-10984 CVE-2017-10985  +2 more Upstream summary: Guido Vranken discovered that FreeRADIUS incorrectly handled memory when decoding packets. A remote attacker could […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5493-2 Related CVEs: CVE-2022-28388 CVE-2022-21123 CVE-2022-21125 CVE-2022-21166 CVE-2022-1158 CVE-2022-1966 CVE-2022-1972 CVE-2022-21499  +12 more Upstream summary: It was discovered that the 8 Devices USB2CAN interface implementation in the Linux kernel did […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8114-1 Related CVEs: CVE-2026-28295 CVE-2026-28296 Upstream summary: It was discovered that the GVfs FTP backend incorrectly handled IP addresses and ports returned by passive mode responses. A malicious remote server […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4868-1 Related CVEs: CVE-2019-17362 Upstream summary: It was discovered that LibTomCrypt incorrectly handled certain inputs. An attacker could possibly use this issue to cause a denial of service or read […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8242-1 Related CVEs: CVE-2023-28447 Upstream summary: Takuya Aramaki discovered that Smarty, vendored in CiviCRM, did not properly escape JavaScript code. An attacker could possibly use this issue to conduct a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5485-1 Related CVEs: CVE-2022-21123 CVE-2022-21125 CVE-2022-21166 CVE-2022-1158 CVE-2022-1966 CVE-2022-1972 CVE-2022-21499 CVE-2022-24958  +12 more Upstream summary: It was discovered that some Intel processors did not completely perform cleanup actions on multi-core […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4862-1 Related CVEs: CVE-2019-12735 Upstream summary: It was discovered that Neovim incorrectly handled certain files. An attacker could possibly use this issue to cause a denial of service or execute […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4926-1 Related CVEs: CVE-2021-23994 CVE-2021-23995 CVE-2021-23996 CVE-2021-23997 CVE-2021-23998 CVE-2021-23999 CVE-2021-24000 CVE-2021-24001  +12 more Upstream summary: Multiple security issues were discovered in Firefox. If a user were tricked into opening a […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8202-1 Related CVEs: CVE-2026-39956 CVE-2026-33947 CVE-2026-39979 CVE-2026-33948 CVE-2026-40164 CVE-2026-32316 CVE-2016-4074 Upstream summary: It was discovered that jq did not correctly handle certain string concatenations. An attacker could possibly use this […]