Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6796-1 Related CVEs: CVE-2023-22745 CVE-2024-29040 Upstream summary: Fergus Dall discovered that TPM2 Software Stack did not properly handle layer arrays. An attacker could possibly use this issue to cause TPM2 […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7081-1 Related CVEs: CVE-2024-24791 CVE-2024-34155 CVE-2024-34156 CVE-2024-34158 Upstream summary: It was discovered that the Go net/http module did not properly handle responses to requests with an "Expect: 100-continue" header under […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6596-1 Related CVEs: CVE-2020-36658 Upstream summary: It was discovered that Apache::Session::LDAP incorrectly handled invalid X.509 certificates. If a user or an automated system were tricked into opening a specially crafted […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6676-1 Related CVEs: CVE-2024-25629 CVE-2023-31130 CVE-2023-32067 CVE-2022-4904 CVE-2021-3672 Upstream summary: Vojtěch Vobr discovered that c-ares incorrectly handled user input from local configuration files. An attacker could possibly use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6851-2 Related CVEs: https://launchpad.net/bugs/2071333 CVE-2022-4968 https://launchpad.net/bugs/2066258 https://launchpad.net/bugs/1987842 https://launchpad.net/bugs/2065738 Upstream summary: USN-6851-1 fixed vulnerabilities in Netplan. The update lead to the discovery of a regression in netplan which caused systemctl enable […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6640-1 Related CVEs: CVE-2023-4641 CVE-2013-4235 Upstream summary: It was discovered that shadow was not properly sanitizing memory when running the password utility. An attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6153-1 Related CVEs: CVE-2022-39286 Upstream summary: It was discovered that Jupyter Core executed untrusted files in the current working directory. An attacker could possibly use this issue to execute arbitrary […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 16.04 (xenial) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6179-1 Related CVEs: CVE-2023-1436 CVE-2022-40149 CVE-2022-40150 CVE-2022-45685 CVE-2022-45693 Upstream summary: It was discovered that Jettison incorrectly handled certain inputs. If a user or an automated system were tricked into opening […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7912-1 Related CVEs: CVE-2025-58436 https://launchpad.net/bugs/2133207 CVE-2025-61915 CVE-2025-58060 CVE-2025-58364 CVE-2024-47175 https://launchpad.net/bugs/2070315 CVE-2024-35235 Upstream summary: Johannes Meixner and Paul Zirnik discovered that CUPS incorrectly handled clients that send messages slowly. A remote […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8071-2 Related CVEs: CVE-2026-2781 CVE-2022-3479 CVE-2023-0767 CVE-2022-22747 CVE-2022-34480 CVE-2020-25648 CVE-2021-43527 CVE-2020-12403  +12 more Upstream summary: USN-8071-1 fixed a vulnerability in nss. This update provides the corresponding fix for Ubuntu 14.04 […]