Lucene search
K
UbuntuRecent

10869 matches found

Ubuntu
Ubuntu
added 2026/01/19 12:30 p.m.9 views

USN-7967-1: Avahi vulnerabilities

It was discovered that Avahi incorrectly terminated when processing browser records with wide-area disabled. An attacker could possibly use this issue to cause Avahi to crash, resulting in a denial of service. CVE-2025-68276 It was discovered that Avahi incorrectly terminated when processing...

6.5CVSS5.3AI score0.00353EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/19 11:57 a.m.4 views

USN-7955-2: urllib3 regression

USN-7955-1 fixed vulnerabilities in urllib3. The update introduced a regression in response streaming on Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that urllib3 incorrectly handled...

8.9CVSS7.3AI score0.02667EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2026/01/19 10:35 a.m.6 views

USN-7966-1: Snowflake vulnerabilities

It was discovered that Pion DTLS, vendored in Snowflake, did not impose a limit on the amount of data that was buffered during the handshake. An attacker could possibly use the issue to cause a denial of service. CVE-2022-29189 It was discovered that Pion DTLS, vendored in Snowflake, did not...

7.5CVSS6.5AI score0.0183EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/15 2:51 p.m.5 views

USN-7964-1: Git vulnerabilities

It was discovered that Git did not properly sanitize URLs when asking for credentials via a terminal prompt. An attacker could possibly use this issue to trick a user into disclosing their password. CVE-2024-50349 It was discovered that Git did not properly handle carriage return characters in it...

7.5CVSS7.4AI score0.01019EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/15 2:42 p.m.5 views

USN-7965-1: SimGear vulnerability

It was discovered that SimGear could be made to bypass the sandboxing of Nasal scripts. An attacker could possibly use this issue to execute arbitrary code...

9.9CVSS7.9AI score0.00342EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/15 10:14 a.m.7 views

USN-7916-2: python-apt regression

USN-7916-1 fixed a vulnerability in python-apt. The update had a PEP 440 incompatible version. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Julian Andres Klode discovered that python-apt incorrectly handled deb822 configuration files. An attacker...

6.9CVSS5.4AI score0.00122EPSS
Exploits1References1
Ubuntu
Ubuntu
added 2026/01/14 4:45 p.m.10 views

USN-7963-1: libpng vulnerabilities

It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and gamma correction. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a...

7.8CVSS6.3AI score0.00294EPSS
Exploits3
Ubuntu
Ubuntu
added 2026/01/14 4:22 p.m.5 views

USN-7962-1: cpp-httplib vulnerability

It was discovered that cpp-httplib did not correctly handle HTTP headers. A remote attacker could possibly use this issue to bypass authorization and impersonate users...

10CVSS7.6AI score0.00302EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/14 1:37 p.m.6 views

USN-7961-1: Erlang vulnerability

It was discovered that Erlang incorrectly validated peer certificates when incorrect extended key usage was presented. A remote attacker could possibly use this issue to bypass SSL key usage restrictions...

5.5CVSS5.7AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/14 9:59 a.m.10 views

USN-7960-1: Rack vulnerabilities

It was discovered that Rack incorrectly handled certain query parameters. An attacker could possibly use this issue to cause a limited denial of service. This issue was only addressed in Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. CVE-2025-59830 It was discovered that Rack did not properly handle...

7.5CVSS7.1AI score0.00848EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/14 5:20 a.m.8 views

USN-7959-1: klibc vulnerabilities

It was discovered that zlib, vendored in klibc, did not properly handle integer arithmetic. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service...

9.8CVSS7.5AI score0.0595EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/14 4:41 a.m.6 views

USN-7958-1: AngularJS vulnerabilities

It was discovered that AngularJS did not properly sanitize certain xlink:href attributes. A remote attacker could possibly use this issue to perform cross site scripting. This issue only affected Ubuntu 16.04 LTS. CVE-2019-14863 It was discovered that AngularJS incorrectly handled certain regular...

7.5CVSS5.8AI score0.04658EPSS
Exploits7
Ubuntu
Ubuntu
added 2026/01/13 2:36 p.m.3 views

USN-7927-3: urllib3 regression

USN-7927-1 fixed vulnerabilities in urllib3. The update for CVE-2025-66471 introduced a regression in urllib3 when decompressing zstd data. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Illia Volochii discovered that urllib3 did not limit the steps ...

8.9CVSS7.4AI score0.00622EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2026/01/13 1:57 p.m.8 views

USN-7957-1: WebKitGTK vulnerabilities

Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...

8.8CVSS7.5AI score0.32EPSS
Exploits14
Ubuntu
Ubuntu
added 2026/01/13 6:41 a.m.6 views

USN-7956-1: Google Guest Agent vulnerability

Jakub Ciolek discovered that the Go Cryptography module included in Google Guest Agent did not validate GSSAPI authentication requests during SSH operations. An attacker could possibly use this issue to cause a denial of service...

5.3CVSS6.8AI score0.00521EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/12 10:43 p.m.6 views

USN-7922-5: Linux kernel (IoT) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - InfiniBand drivers; - Media drivers; - Network drivers; - Pin controllers...

7.8CVSS7AI score0.00261EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/12 9:26 p.m.6 views

USN-7927-2: urllib3 regression

USN-7927-1 fixed vulnerabilities in urllib3. The update for CVE-2025-66471 introduced a regression in the zstd decompression component inside urllib3. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Illia Volochii discovered that urllib3 did not limit...

8.9CVSS7.4AI score0.00622EPSS
Exploits0References1
Ubuntu
Ubuntu
added 2026/01/12 3:31 p.m.7 views

USN-7955-1: urllib3 vulnerability

It was discovered that urllib3 incorrectly handled decompression during HTTP redirects. An attacker could possibly use this issue to cause urllib3 to use excessive resources, causing a denial of service...

8.9CVSS7.2AI score0.02667EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/12 1:52 p.m.8 views

USN-7954-1: Libtasn1 vulnerabilities

It was discovered that Libtasn1 incorrectly handled decoding ASN.1 content. An attacker could possibly use this issue to cause Libtasn1 to crash, resulting in a denial of service. CVE-2025-13151 It was discovered that Libtasn1 incorrectly handled encoding ASN.1 content. An attacker could possibly...

9.1CVSS7.5AI score0.02062EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/12 6:40 a.m.15 views

USN-7951-1: Python vulnerability

It was discovered that Python's http.client did not properly handle the Content-Length header in HTTP responses. A malicious server could exploit this to cause Python to allocate excessive memory, leading to a denial of service...

7.5CVSS7.5AI score0.01525EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/12 6:36 a.m.8 views

USN-7953-1: PHP vulnerabilities

It was discovered that PHP incorrectly handled memory while reading images in multi-chunk mode. An attacker could possibly use this issue to obtain sensitive information. This issue only affected Ubuntu 24.04 LTS, Ubuntu 25.04 and Ubuntu 25.10. CVE-2025-14177 It was discovered that PHP incorrectl...

8.2CVSS5.4AI score0.00573EPSS
Exploits4
Ubuntu
Ubuntu
added 2026/01/12 1:3 a.m.9 views

USN-7952-1: libheif vulnerabilities

It was discovered that libheif did not correctly handle certain memory operations. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. CVE-2024-25269 Aldo Ristori discovered that libheif did not...

7.5CVSS7.4AI score0.00687EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/01/09 7:45 p.m.7 views

USN-7931-5: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Media drivers; - Memory management; - Appletalk network protocol; - Netfilter; CVE-2025-37958,...

7.8CVSS7AI score0.00227EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/09 7:30 p.m.10 views

USN-7940-2: Linux kernel (Azure, N-Series) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

8.8CVSS7.4AI score0.01345EPSS
Exploits10
Ubuntu
Ubuntu
added 2026/01/09 7:20 p.m.7 views

USN-7928-5: Linux kernel (KVM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Media drivers; - Network drivers; - AFS file system; - F2FS file system; - Tracing...

7.8CVSS7.2AI score0.0025EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/08 6:39 p.m.6 views

USN-7950-1: Tornado vulnerabilities

It was discovered that Tornado incorrectly handled special characters in HTTP headers. An attacker could possibly use this issue to execute a cross- site scripting XSS attack. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, Ubuntu 25.04, and Ubuntu 25.10...

7.5CVSS5.8AI score0.00396EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/08 3:55 p.m.5 views

USN-7946-2: GnuPG vulnerability

USN-7946-1 fixed vulnerabilities in GnuPG 2.x. This update provides the corresponding updates for GnuPG 1.x. Original advisory details: It was discovered that GnuPG incorrectly handled crafted input. A remote attacker could possibly use this issue to crash the program, or execute arbitrary code...

7.8CVSS5.8AI score0.00129EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/08 3:15 p.m.8 views

USN-7949-1: Sodium vulnerability

It was discovered that Sodium incorrectly handled the elliptic curve point validity check in certain atypical use cases. This could result in invalid points being used, contrary to expectations...

4.5CVSS5.2AI score0.00166EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/08 2:34 p.m.6 views

USN-7948-1: GPSd vulnerabilities

It was discovered that GPSd incorrectly handled processing NMEA2000 packets. An attacker could use this issue to cause GPSd to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-67268 It was discovered that GPSd incorrectly handled processing NAVCOM packets. An...

9.8CVSS5.8AI score0.00674EPSS
Exploits3
Ubuntu
Ubuntu
added 2026/01/08 1:21 p.m.12 views

USN-7946-1: GnuPG vulnerability

It was discovered that GnuPG incorrectly handled crafted input. A remote attacker could possibly use this issue to crash the program, or execute arbitrary code...

7.8CVSS5.7AI score0.00129EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/08 12:59 p.m.17 views

USN-7047-1: libvirt vulnerabilities

It was discovered that libvirt parsed user-provided XML files before performing ACL checks. An attacker could possibly use this issue to cause libvirt to consume memory, resulting in a denial of service. CVE-2025-12748 It was discovered that libvirt incorrectly handled permissions on external...

5.5CVSS5.3AI score0.00185EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/07 1:6 p.m.12 views

USN-7945-1: Libxslt vulnerability

Ivan Fratric discovered that Libxslt was vulnerable to type confusion when performing XML transformations. An attacker could possibly use this issue to cause Libxslt to crash or corrupt memory, causing a denial of service or undefined behavior...

7.5CVSS6.5AI score0.012EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/07 12:40 p.m.10 views

USN-7944-1: Net-SNMP vulnerability

Bahae Bahrini discovered that Net-SNMP could be made to write out of bounds. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly use this issue to cause a denial of service...

9.8CVSS5.8AI score0.4269EPSS
Exploits2
Ubuntu
Ubuntu
added 2026/01/07 9:18 a.m.5 views

USN-7943-1: libcaca vulnerability

Han Zheng discovered that libcaca incorrectly handled certain images. An attacker could possibly use this issue to cause libcaca to crash...

6.5CVSS6.4AI score0.02752EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/06 7:49 p.m.6 views

USN-7922-4: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - InfiniBand drivers; - Media drivers; - Network drivers; - Pin controllers...

7.8CVSS7AI score0.00261EPSS
Exploits0
Ubuntu
Ubuntu
added 2026/01/06 3:17 p.m.9 views

USN-7942-1: GLib vulnerabilities

It was discovered that GLib incorrectly handled escaping URI strings. An attacker could use this issue to cause GLib to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-13601 It was discovered that GLib incorrectly parsed certain GVariants. An attacker could u...

9.8CVSS6.2AI score0.00754EPSS
Exploits1
Ubuntu
Ubuntu
added 2026/01/05 1:2 p.m.4 views

USN-7941-1: WebKitGTK vulnerabilities

Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...

8.8CVSS6.8AI score0.00564EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/12/19 2:43 p.m.6 views

USN-7922-3: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - InfiniBand drivers; - Media drivers; - Network drivers; - Pin controllers...

7.8CVSS7AI score0.00261EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/12/19 2:41 p.m.9 views

USN-7928-4: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Media drivers; - Network drivers; - AFS file system; - F2FS file system; - Tracing...

7.8CVSS7.2AI score0.0025EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/12/19 2:35 p.m.8 views

USN-7931-4: Linux kernel (Xilinx) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Media drivers; - Memory management; - Appletalk network protocol; - Netfilter; CVE-2025-37958,...

7.8CVSS7AI score0.00227EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/12/19 2:31 p.m.9 views

USN-7921-2: Linux kernel (Real-time) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Media drivers; - Netfilter; - TLS protocol; CVE-2025-39946, CVE-2025-39964, CVE-2025-39993,...

9.8CVSS7AI score0.08942EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/12/17 8:58 p.m.9 views

USN-7940-1: Linux kernel (Azure FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

8.8CVSS7.4AI score0.01345EPSS
Exploits10
Ubuntu
Ubuntu
added 2025/12/16 10:25 p.m.7 views

USN-7939-2: Linux kernel (Azure FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.6AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
added 2025/12/16 8:58 p.m.8 views

USN-7939-1: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.6AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
added 2025/12/16 2:52 p.m.5 views

USN-7938-1: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.6AI score0.0037EPSS
Exploits3
Ubuntu
Ubuntu
added 2025/12/16 1:37 p.m.7 views

USN-7889-7: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Media drivers; - Network drivers; - Netfilter; - TLS protocol; CVE-2025-21729, CVE-2025-38227, CVE-2025-38616,...

7.8CVSS7.1AI score0.00202EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/12/16 12:21 a.m.8 views

USN-7937-1: Linux kernel (Azure FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.5AI score0.01345EPSS
Exploits8
Ubuntu
Ubuntu
added 2025/12/15 11:35 p.m.5 views

USN-7935-1: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.5AI score0.01345EPSS
Exploits9
Ubuntu
Ubuntu
added 2025/12/15 11:32 p.m.9 views

USN-7936-1: Linux kernel (OEM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - Compute Acceleration Framework; - Media drivers; - Netfilter; - TLS protocol; CVE-2025-39946,...

9.8CVSS7AI score0.08942EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/12/15 11:5 p.m.6 views

USN-7920-2: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Tracing infrastructure; - Netfilter; CVE-2025-40018, CVE-2025-40232...

7AI score0.00193EPSS
Exploits0
Total number of security vulnerabilities10869