Package Management

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7217-1 Related CVEs: CVE-2017-5886 CVE-2018-11255 CVE-2018-12983 CVE-2018-20797 CVE-2018-5308 CVE-2018-8002 CVE-2019-10723 CVE-2020-18971  +2 more Upstream summary: It was discovered that the PoDoFo library could dereference a NULL pointer when getting the […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6282-1 Related CVEs: CVE-2020-13959 Upstream summary: Jackson Henry discovered that Velocity Tools incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7827-1 Related CVEs: CVE-2025-47808 CVE-2025-47806 CVE-2025-47807 CVE-2024-47542 CVE-2023-37328 CVE-2024-47615 CVE-2024-47538 CVE-2024-47607  +12 more Upstream summary: Shaun Mirani discovered that GStreamer Base Plugins did not correctly handle certain memory operations. An […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8064-1 Related CVEs: CVE-2018-20802 Upstream summary: Eliot Horowitz discovered that MongoDB may fail to validate some instances of malformed BSON. A remote attacker could possibly use this issue to cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6978-1 Related CVEs: CVE-2016-3674 CVE-2020-26217 CVE-2020-26258 CVE-2020-26259 CVE-2021-21341 CVE-2021-21342 CVE-2021-21343 CVE-2021-21344  +12 more Upstream summary: It was discovered that XStream incorrectly handled parsing of certain crafted XML documents. A remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7827-1 Related CVEs: CVE-2025-47808 CVE-2025-47806 CVE-2025-47807 CVE-2024-47542 CVE-2023-37328 CVE-2024-47615 CVE-2024-47538 CVE-2024-47607  +7 more Upstream summary: Shaun Mirani discovered that GStreamer Base Plugins did not correctly handle certain memory operations. An […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6881-1 Related CVEs: CVE-2021-38371 CVE-2023-42117 CVE-2023-42119 CVE-2023-42114 CVE-2023-42115 CVE-2023-42116 CVE-2022-37452 CVE-2020-28007  +12 more Upstream summary: It was discovered that Exim did not enforce STARTTLS sync point on client side. An […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6419-1 Related CVEs: CVE-2016-7103 CVE-2021-41182 CVE-2021-41183 CVE-2021-41184 CVE-2022-31160 Upstream summary: Hong Phat Ly discovered that jQuery UI did not properly manage parameters from untrusted sources, which could lead to arbitrary […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7742-1 Related CVEs: CVE-2025-32988 CVE-2025-32990 CVE-2025-6395 CVE-2023-5981 CVE-2021-4209 CVE-2022-2509 https://launchpad.net/bugs/1860656 https://launchpad.net/bugs/1858691  +5 more Upstream summary: It was discovered that GnuTLS incorrectly handled exporting Subject Alternative Name (SAN) entries containing an […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5944-1 Related CVEs: CVE-2022-25857 CVE-2022-38749 CVE-2022-38750 CVE-2022-38751 Upstream summary: It was discovered that SnakeYAML did not limit the maximal nested depth for collections when parsing YAML data. If a user […]