Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7740-1 Related CVEs: CVE-2022-4121 Upstream summary: It was discovered that LibEtPan incorrectly handled memory when parsing IMAP STATUS responses. A remote attacker could possibly use this issue to cause LibEtPan […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7804-2 Related CVEs: CVE-2025-59362 CVE-2025-62168 Upstream summary: USN-7804-1 fixed a vulnerability in Squid. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7752-1 Related CVEs: CVE-2023-26917 CVE-2023-26916 Upstream summary: It was discovered that libyang incorrectly handled certain memory operations when parsing YANG strings. An attacker could possibly use this issue to cause […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8035-1 Related CVEs: CVE-2026-25646 CVE-2026-22801 CVE-2025-66293 CVE-2026-22695 CVE-2025-64720 CVE-2025-64506 CVE-2025-64505 CVE-2025-65018 Upstream summary: It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7759-1 Related CVEs: CVE-2019-6473 Upstream summary: It was discovered that Kea DHCP did not correctly handle invalid hostnames. A remote attacker could possibly use this issue to cause a denial […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4925-1 Related CVEs: CVE-2021-28963 Upstream summary: Toni Huttunen and Fraktal Oy discovered that the Shibboleth Service provider allowed content injection due to allowing attacker-controlled parameters in error or other status […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7625-1 Related CVEs: CVE-2018-19960 CVE-2022-21689 Upstream summary: It was discovered that OnionShare could be exploited when run with the –debug argument. A local attacker could possibly use this issue to […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8206-1 Related CVEs: CVE-2019-17113 CVE-2018-10017 CVE-2018-11710 Upstream summary: Antonio Morales Maldonado discovered that OpenMPT did not properly limit the length of strings in certain cases, leading to a buffer overflow. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7399-1 Related CVEs: CVE-2025-30219 CVE-2023-46118 Upstream summary: It was discovered that RabbitMQ Server's management UI did not sanitize certain input. An attacker could possibly use this issue to inject code […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7946-1 Related CVEs: CVE-2025-68973 CVE-2025-30258 CVE-2022-34903 CVE-2018-12020 Upstream summary: It was discovered that GnuPG incorrectly handled crafted input. A remote attacker could possibly use this issue to crash the program, […]