Lucene search
K
UbuntuRecent

10869 matches found

Ubuntu
Ubuntu
added 2026/02/04 9:51 a.m.9 views

USN-8011-1: Emacs vulnerabilities

It was discovered that Emacs could trigger unsafe Lisp macro expansion, when a user invoked elisp-completion-at-point on untrusted Emacs Lisp source code. An attacker could possibly use this issue to execute arbitrary code. CVE-2024-53920 It was discovered that Emacs did not properly sanitize inp...

8.8CVSS6AI score0.02679EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/02/04 8:27 a.m.8 views

USN-8010-1: pip vulnerabilities

Several security issues were discovered in the libraries bundled in pip. An attacker could possibly use these issues to perform a variety of attacks, such as denial of service or arbitrary code execution...

8.9CVSS7.5AI score0.02667EPSS
Exploits4
Ubuntu
Ubuntu
added 2026/02/03 4:6 p.m.5 views

USN-8009-1: Django vulnerabilities

It was discovered that Django exposed timing information when checking passwords. An attacker could possibly use this issue to obtain sensitive information. CVE-2025-13473 Jiyong Yang discovered that Django incorrectly handled malformed requests with duplicate headers. An attacker could possibly...

8.5CVSS5.8AI score0.09436EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/02/03 1:6 p.m.6 views

USN-8008-1: Keystone Middleware vulnerability

Grzegorz Grasza discovered that the Keystone Middleware incorrectly sanitized authentication headers before processing OAuth 2.0 tokens. An attacker could possibly use this issue to escalate privileges or impersonate other users...

9.9CVSS5.4AI score0.00575EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/02/03 10:5 a.m.6 views

USN-8007-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled image depth values when processing MIFF image files. An attacker could use this issue to cause a denial of service or possibly execute arbitrary code. CVE-2025-43965 It was discovered that ImageMagick incorrectly processed SVG images and MSL...

7.5CVSS6.1AI score0.00552EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/02/03 7:52 a.m.5 views

USN-8006-1: MySQL vulnerabilities

Multiple security issues were discovered in MySQL and this update includes a new upstream MySQL version to fix these issues. MySQL has been updated to 8.0.45 in Ubuntu 20.04 LTS. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes...

6.5CVSS7AI score0.00533EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/02/03 5:15 a.m.11 views

USN-8005-1: GNU C Library vulnerabilities

Vitaly Simonovich discovered that the GNU C Library did not properly initialize the input when WRDEREUSE is used. An attacker could possibly use this issue to cause applications to crash, leading to a denial of service. CVE-2025-15281 Anastasia Belova discovered that the GNU C Library incorrectly...

8.4CVSS7.2AI score0.00564EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/03 3:15 a.m.2 views

USN-8004-1: FreeRDP vulnerabilities

Kim Dong Han discovered that FreeRDP did not correctly validate the size of certain variables, which could cause a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

9.8CVSS6.1AI score0.00443EPSS
Exploits5
Ubuntu
Ubuntu
added 2026/02/03 12:56 a.m.8 views

USN-7998-1: OpenJDK 17 vulnerabilities

It was discovered that the RMI component of OpenJDK 17 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 11:40 p.m.6 views

USN-8003-1: CRaC JDK 21 vulnerabilities

It was discovered that the RMI component of CRaC JDK 21 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 11:31 p.m.7 views

USN-8002-1: OpenJDK 21 vulnerabilities

It was discovered that the RMI component of OpenJDK 21 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 11:25 p.m.7 views

USN-8001-1: OpenJDK 11 vulnerabilities

It was discovered that the RMI component of OpenJDK 11 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 11:2 p.m.15 views

USN-8000-1: OpenJDK 8 vulnerabilities

It was discovered that the RMI component of OpenJDK 8 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 8:26 p.m.5 views

USN-7999-1: Filelock vulnerabilities

It was discovered that Filelock incorrectly handled symlinks in temp files. A local attacker could possibly use this issue to cause lock operations to fail or behave unexpectedly. CVE-2026-22701 It was discovered that the file locking implementation in the Filelock package contained a race...

6.5CVSS5.5AI score0.00184EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 6:10 p.m.6 views

USN-7997-1: CRaC JDK 17 vulnerabilities

It was discovered that the RMI component of CRaC JDK 17 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 6:5 p.m.7 views

USN-7996-1: CRaC JDK 25 vulnerabilities

It was discovered that the RMI component of CRaC JDK 25 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 5:59 p.m.8 views

USN-7995-1: OpenJDK 25 vulnerabilities

It was discovered that the RMI component of OpenJDK 25 would establish RMI TCP endpoint connections to a remote host without setting an endpoint identification algorithm. An unauthenticated remote attacker could possibly use this issue to steal sensitive information. CVE-2026-21925 Mingijung...

7.5CVSS6AI score0.00864EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/02/02 3:14 p.m.12 views

USN-7994-1: MySQL vulnerabilities

Multiple security issues were discovered in MySQL and this update includes new upstream MySQL versions to fix these issues. MySQL has been updated to 8.0.45 in Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. Ubuntu 25.10 has been updated to MySQL 8.4.8. In addition to security fixes, the updated packages...

6.5CVSS5.3AI score0.00337EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/02/02 2:48 p.m.4 views

USN-7993-1: libpng vulnerabilities

It was discovered that libpng incorrectly handled memory when processing certain malformed PNG files. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a denial of service...

5.5CVSS5.5AI score0.00139EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/02/02 12:58 p.m.9 views

USN-7992-1: Inetutils vulnerability

Kyu Neushwaistein discovered that telnetd in Inetutils incorrectly handled certain environment variables. A remote attacker could use this issue to bypass authentication and open a session as an administrator...

9.8CVSS5.5AI score0.98871EPSS
Exploits60
Ubuntu
Ubuntu
added 2026/02/02 12:11 p.m.9 views

USN-7991-1: Thunderbird vulnerabilities

Multiple security issues were discovered in Thunderbird. If a user were tricked into opening a specially crafted website in a browsing context, an attacker could potentially exploit these to cause a denial of service, obtain sensitive information, bypass security restrictions, cross-site tracing,...

9.8CVSS8.6AI score0.09348EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/02/02 2:41 a.m.6 views

USN-7989-1: The Internet Archive Python Library vulnerability

Pengo Wray discovered that The Internet Archive Python Library incorrectly handled certain file paths when downloading files. An attacker could possibly use this issue to write files to arbitrary locations on the file system...

9.4CVSS5.5AI score0.01414EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/30 3:41 p.m.10 views

USN-7990-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Padata parallel execution mechanism; - Netfilter; CVE-2022-49698, CVE-2025-21726, CVE-2025-400...

7.8CVSS7.1AI score0.00283EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/30 2:56 p.m.15 views

USN-7990-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Padata parallel execution mechanism; - Netfilter; CVE-2022-49698, CVE-2025-21726, CVE-2025-400...

7.8CVSS7.1AI score0.00283EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/29 11:24 p.m.7 views

USN-7988-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Media drivers; - NVME drivers; - File systems infrastructure; - Timer subsystem; - Memory management; - Packet...

7.8CVSS7AI score0.00291EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/29 11:15 p.m.6 views

USN-7988-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Media drivers; - NVME drivers; - File systems infrastructure; - Timer subsystem; - Memory management; - Packet...

7.8CVSS7AI score0.00291EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/29 11:1 p.m.7 views

USN-7987-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Media drivers; - File systems infrastructure; - Timer subsystem; - Packet sockets; - Network...

7.8CVSS7AI score0.00259EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/29 10:53 p.m.7 views

USN-7987-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Media drivers; - File systems infrastructure; - Timer subsystem; - Packet sockets; - Network...

7.8CVSS7AI score0.00259EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/29 10:31 p.m.5 views

USN-7986-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ceph distributed file system; - JFFS2 file system; - Timer subsystem; - USB sound devices; CVE-2024-26689,...

7.8CVSS7.2AI score0.03558EPSS
Exploits8
Ubuntu
Ubuntu
added 2026/01/29 4:39 p.m.10 views

USN-7985-1: TeX Live vulnerabilities

Shin Ando discovered that the Xpdf toolkit embedded in TeX Live incorrectly handled memory when decoding certain data streams. An attacker could possibly use this issue to cause TeX Live to crash, resulting in a denial of service, or execute arbitrary code. This issue only affected Ubuntu 20.04 L...

8.1CVSS7.3AI score0.00902EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/29 8:33 a.m.5 views

USN-7984-1: Pagure vulnerabilities

Thomas Chauchefoin discovered that Pagure incorrectly handled symbolic links in Git repositories. A remote attacker could possibly use this issue to cause Pagure to expose files outside the intended repository boundaries. CVE-2024-4981 Thomas Chauchefoin discovered that Pagure did not properly...

9.8CVSS5.5AI score0.00849EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/01/29 8:17 a.m.8 views

LSN-0117-1: Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: e100: Fix possible use after free in e100xmitprepare In e100xmitprepare, if we can't map the skb, then return -ENOMEM, so e100xmitframe will return NETDEVTXBUSY and the upper layer will resend the skb. In the Linux kernel, the...

7.8CVSS6.6AI score0.00571EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/01/29 7:43 a.m.9 views

USN-7983-1: containerd vulnerabilities

David Leadbeater discovered that containerd incorrectly set certain directory path permissions. An attacker could possibly use this issue to achieve unauthorised access to the files. CVE-2024-25621 It was discovered that containerd did not properly handle the execution of the goroutine of contain...

7.8CVSS6.6AI score0.00151EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/27 11:36 p.m.6 views

USN-7982-1: FFmpeg vulnerabilities

It was discovered that FFmpeg did not correctly handle certain memory operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS and Ubuntu 25.10. CVE-2025-59728 It was...

8.7CVSS6.3AI score0.0032EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/27 9:30 p.m.11 views

USN-7980-2: OpenSSL vulnerabilities

USN-7980-1 fixed vulnerabilities in OpenSSL. This update provides the corresponding updates for CVE-2025-68160 for openssl and openssl1.0, CVE-2025-69418 for openssl on Ubuntu 18.04 LTS and Ubuntu 20.04 LTS, CVE-2025-69419 for openssl on Ubuntu 18.04 LTS and Ubuntu 20.04 LTS, CVE-2025-69420 for...

7.5CVSS5.5AI score0.00844EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/27 6:14 p.m.6 views

USN-7981-1: wlc vulnerabilities

It was discovered that wlc did not correctly handle SSL verification. An attacker could possibly use this issue to access sensitive resources. CVE-2026-22250 It was discovered that wlc did not correctly handle API keys. An attacker could possibly use this issue to leak API keys to a malicious...

5.5CVSS5.3AI score0.00141EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/27 6:10 p.m.12 views

USN-7980-1: OpenSSL vulnerabilities

Stanislav Fort, Petr Šimeček, and Hamza discovered that OpenSSL incorrectly validated PBMAC1 parameters when doing PKCS12 MAC verification. An attacker could possibly use this issue to cause OpenSSL to crash, resulting in a denial of service. This issue only affected Ubuntu 25.10. CVE-2025-11187...

9.8CVSS5.4AI score0.47621EPSS
Exploits7
Ubuntu
Ubuntu
added 2026/01/27 12:57 p.m.5 views

USN-7979-1: jaraco.context vulnerability

It was discovered that jaraco.context incorrectly handled certain zip file paths. An attacker could possibly use this issue to extract arbitrary files outside of the intented extraction directory...

8.6CVSS5.5AI score0.00527EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/26 6:47 p.m.7 views

USN-7978-1: GNU Screen vulnerabilities

It was discovered that GNU Screen incorrectly handled signals when setuid or setgid privileges were being used, which is not the default in Ubuntu. A local attacker could use this issue to send privileged signals, possibly leading to a denial of service. This issue only affected Ubuntu 22.04 LTS...

6.5CVSS6.2AI score0.0054EPSS
Exploits3
Ubuntu
Ubuntu
added 2026/01/26 1:50 p.m.12 views

USN-7977-1: Git LFS vulnerabilities

Ryota K discovered that Git LFS may leak login credentials in certain instances due to failing to check for URL-encoded characters. An attacker could possibly use this issue to learn sensitive information. CVE-2024-53263 It was discovered that Git LFS could have its git lfs checkout and git lfs...

8.6CVSS7.1AI score0.0104EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/26 11:0 a.m.5 views

USN-7976-1: Form-Data vulnerability

Ben Shonaldmann discovered that Form-data incorrectly generated boundary values for multipart form-encoded data, leading to predictable values. A remote attacker could possibly use this issue to make arbitrary requests to internal systems...

9.4CVSS6.8AI score0.01735EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/23 4:53 a.m.8 views

USN-7973-1: cJSON vulnerabilities

It was discovered that cJSON incorrectly handled parsing large numbers. An attacker could possibly use this issue to cause a denial of service. CVE-2023-26819 It was discovered that cJSON may perform out-of-bounds read when processing specially crafted JSON files using parseobject. An attacker...

9.8CVSS5.7AI score0.00693EPSS
Exploits3
Ubuntu
Ubuntu
added 2026/01/22 1:35 p.m.6 views

USN-7975-1: pyasn1 vulnerability

It was discovered that pyasn1 incorrectly handled malformed RELATIVE-OIDs with excessive continuation octets. An attacker could possibly use this issue to cause pyasn1 to consume memory, leading to a denial of service...

7.5CVSS5.3AI score0.00679EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/22 1:23 p.m.6 views

USN-7974-1: libxml2 vulnerabilities

It was discovered that libxml2 incorrectly handled maliciously crafted SGML catalog files. An attacker could possibly use this issue to cause libxml2 to consume excessive resources, leading to a denial of service. CVE-2025-8732 It was discovered that libxml2 incorrectly handled recursive include...

5.9CVSS5.5AI score0.00725EPSS
Exploits3
Ubuntu
Ubuntu
added 2026/01/21 5:35 p.m.5 views

USN-7972-1: OpenCC vulnerability

It was discovered that OpenCC incorrectly handled truncated UTF-8 input. An attacker could possibly use this issue to cause OpenCC to crash, resulting in a denial of service...

5.5CVSS5.6AI score0.0023EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/21 5:13 p.m.4 views

USN-7971-1: GLib vulnerability

It was discovered that GLib incorrectly handled the buffered input stream API. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or possibly execute arbitrary code...

3.7CVSS5.8AI score0.00396EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/21 5:29 a.m.12 views

USN-7970-1: iperf3 vulnerabilities

Jorge Sancho Larraz discovered that iperf3 did not properly manage certain inputs, which could cause the server process to stop responding, waiting for input on the control connection. A remote attacker could possibly use this issue to cause a denial of service. This issue was only addressed in...

10CVSS6.7AI score0.01107EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/19 7:34 p.m.8 views

USN-7969-1: Dungeon Crawl Stone Stoup vulnerability

David Mendenhall discovered that Dungeon Crawl Stone Soup was incorrectly handling Lua bytecode embedded in an uploaded .crawlrc file. An attacker could possibly use this issue to execute arbitrary code...

9.8CVSS8.7AI score0.03923EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/19 2:59 p.m.9 views

USN-7968-1: Apache HTTP Server vulnerabilities

It was discovered that the Apache HTTP Server incorrectly handled failed ACME certificate renewals. This could result in renewal attempts to be repeated without delays, possibly leading to a denial of service. CVE-2025-55753 Anthony Parfenov discovered that the Apache HTTP Server would pass the...

8.3CVSS7.5AI score0.015EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/19 12:42 p.m.7 views

USN-7966-2: Telegraf vulnerabilities

USN-7966-1 fixed vulnerabilities in Snowflake. This update provides the corresponding updates for Telegraf. Original advisory details: It was discovered that Pion DTLS, vendored in Telegraf, did not impose a limit on the amount of data that was buffered during the handshake. An attacker could...

7.5CVSS6.6AI score0.0183EPSS
Exploits0
Total number of security vulnerabilities10869