UBUNTU-CVE-2026-54276

AIOHTTP is an asynchronous HTTP client/server framework for asyncio an...

UBUNTU-CVE-2026-50169

Angular is a development platform for building mobile and desktop web...

UBUNTU-CVE-2026-54266

Angular is a development platform for building mobile and desktop web...

UBUNTU-CVE-2026-54293

NLTK Natural Language Toolkit is a suite of open source Python modul...

UBUNTU-CVE-2026-54265

Angular is a development platform for building mobile and desktop web...

UBUNTU-CVE-2026-53655

node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar nod...

UBUNTU-CVE-2026-49295

libde265 is an open source implementation of the h.265 video codec. Pr...

UBUNTU-CVE-2026-56406

libexpat before 2.8.2 has an integer overflow in XMLParseBuffer becau...

UBUNTU-CVE-2026-55204

HAProxy through 3.4.0, fixed in commit 9a6d1fe, contains a null pointer dereference vulnerability in hpackdhtinsert within src/hpack-tbl.c that fails to validate the return value of hpackdhtdefrag when the memory pool is exhausted. An attacker can trigger HPACK dynamic table insertions under memo...

UBUNTU-CVE-2026-55200

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bou...

UBUNTU-CVE-2026-12151

Impact: The undici WebSocket client enforces maxPayloadSize on the cum...

UBUNTU-CVE-2026-12300

Memory safety bug fixed in Thunderbird 152. This vulnerability was fix...

UBUNTU-CVE-2026-12330

Incorrect boundary conditions in the Internationalization component. T...

UBUNTU-CVE-2026-12289

Privilege escalation in the Graphics: WebRender component. This vulner...

UBUNTU-CVE-2026-12292

Incorrect boundary conditions in the Web Audio component. This vulnera...

USN-8430-1 adsys vulnerabilities

It was discovered that ADSys did not properly handle certain HTTP/2 frames. A remote attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 26.04 LTS. CVE-2026-27141 It was discovered that ADSys did not properly handle certain HTTP/2 SETTINGS frames. ...

UBUNTU-CVE-2026-7790

Uncontrolled Resource Consumption vulnerability in ninenines cowlib c...

UBUNTU-CVE-2026-32836

drlibsdrflac.h version 0.13.3 and earlier fixed in commits fefced4,...

UBUNTU-CVE-2026-6009

Java Deserialisation Vulnerability in Jaspersoft Reports Library leads...

UBUNTU-CVE-2026-44172

MariaDB server is a community developed fork of MySQL server. In versions 3.3.18 and 3.4.8, an application that was taking non-validated user input, escaping it with mysqlrealescapestring and sending it to the database using text protocol and big5 character set was vulnerable to SQL injections,...