Package Management

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7356-1 Related CVEs: CVE-2024-34402 CVE-2024-34403 CVE-2021-46141 CVE-2021-46142 CVE-2018-19198 CVE-2018-19199 CVE-2018-19200 CVE-2018-20721 Upstream summary: It was discovered that uriparser did not correctly handle certain inputs, which could lead to an integer […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8040-1 Related CVEs: CVE-2026-25506 Upstream summary: Titouan Lazard discovered that MUNGE contained an exploitable buffer overflow in munged (the MUNGE authentication daemon). A local attacker could possibly use this issue […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7949-1 Related CVEs: CVE-2025-69277 Upstream summary: It was discovered that Sodium incorrectly handled the elliptic curve point validity check in certain atypical use cases. This could result in invalid points […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7700-1 Related CVEs: CVE-2023-4039 Upstream summary: It was discovered that the -fstack-protector hardening feature in GCC for AArch64 did not properly protect dynamically-sized local variables such as those created using […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7992-1 Related CVEs: CVE-2026-24061 CVE-2022-39028 CVE-2023-40303 Upstream summary: Kyu Neushwaistein discovered that telnetd in Inetutils incorrectly handled certain environment variables. A remote attacker could use this issue to bypass authentication […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4627-1 Related CVEs: CVE-2020-8694 CVE-2020-12351 CVE-2020-12352 CVE-2020-24490 CVE-2020-16119 CVE-2020-16120 CVE-2020-14386 CVE-2020-12771  +12 more Upstream summary: Moritz Lipp, Michael Schwarz, Andreas Kogler, David Oswald, Catherine Easdon, Claudio Canella, and Daniel Gruss […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3607-1 Related CVEs: CVE-2018-8885 Upstream summary: It was discovered that Screen Resolution Extra was using PolicyKit in an unsafe manner. A local attacker could potentially exploit this issue to bypass […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5108-1 Related CVEs: CVE-2019-17455 Upstream summary: It was discovered that Libntlm incorrectly handled specially crafted NTML requests. An attacker could possibly use this issue to cause a denial of service […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8160-1 Related CVEs: CVE-2025-14847 CVE-2019-20925 CVE-2019-2386 Upstream summary: It was discovered that MongoDB incorrectly handled length parameters in zlib-compressed network messages prior to authentication. An unauthenticated remote attacker could possibly […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8233-1 Related CVEs: CVE-2026-27135 CVE-2019-9511 CVE-2019-9513 CVE-2023-44487 CVE-2024-28182 CVE-2020-11080 Upstream summary: Andrew MacPherson discovered that nghttp2 did not properly validate internal state when the session termination API was called. A […]