Security Hardening

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5446-1 Related CVEs: CVE-2022-1664 Upstream summary: Max Justicz discovered that dpkg incorrectly handled unpacking certain source packages. If a user or an automated system were tricked into unpacking a specially crafted […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8119-1 Related CVEs: CVE-2026-29111 CVE-2025-4598 Upstream summary: It was discovered that systemd incorrectly handled certain cgroup paths. A local attacker could possibly use this issue to cause systemd to crash, resulting […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3036-1 Related CVEs: CVE-2016-3070 CVE-2016-4482 CVE-2016-4565 CVE-2016-4569 CVE-2016-4578 CVE-2016-4580 CVE-2016-4913 CVE-2016-4997  +12 more Upstream summary: Jan Stancek discovered that the Linux kernel's memory manager did not properly handle moving pages mapped […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4848-1 Related CVEs: CVE-2018-18778 Upstream summary: It was discovered that ACME mini_httpd did not properly handle HTTP GET requests with empty headers. A remote attacker could use this vulnerability to read […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4294-1 Related CVEs: CVE-2020-8793 CVE-2020-8794 CVE-2020-7247 Upstream summary: It was discovered that OpenSMTPD mishandled certain input. A remote, unauthenticated attacker could use this vulnerability to execute arbitrary shell commands as any […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8086-1 Related CVEs: CVE-2026-23865 Upstream summary: It was discovered that FreeType did not correctly handle certain integer arithmetic. An attacker could possibly use this issue to leak sensitive information. Table of […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5369-1 Related CVEs: CVE-2022-0718 Upstream summary: It was discovered that oslo.utils incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information. Table of contents Symptom & […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-4038-3 Related CVEs: https://launchpad.net/bugs/1834494 CVE-2016-3189 CVE-2019-12900 Upstream summary: USN-4038-1 fixed a vulnerability in bzip2. The update introduced a regression causing bzip2 to incorrect raises CRC errors for some files. We apologize […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-8128-1 Related CVEs: CVE-2018-25099 CVE-2025-40914 CVE-2025-40912 Upstream summary: It was discovered that CryptX did not verify authentication tags while performing GCM and ChaCha20-Poly1305 decryption. An attacker could possibly use this issue […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-3995-2 Related CVEs: CVE-2018-19115 Upstream summary: USN-3995-1 fixed a vulnerability in keepalived. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was […]