Lucene search
K
UbuntuRecent

10875 matches found

Ubuntu
Ubuntu
•added 2025/07/08 10:21 p.m.•8 views

USN-7610-2: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-3793...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/08 9:31 p.m.•11 views

USN-7608-5: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

7.8CVSS7AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/08 9:12 p.m.•6 views

USN-7627-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - Block layer subsystem; - ACPI drivers; - NILFS2 file system; - File systems infrastructure;...

7.8CVSS7.4AI score0.03558EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 8:7 p.m.•6 views

USN-7627-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - Block layer subsystem; - ACPI drivers; - NILFS2 file system; - File systems infrastructure;...

7.8CVSS7.4AI score0.03558EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 5:58 p.m.•9 views

USN-7412-2: GnuPG regression

USN-7412-1 fixed vulnerabilities in GnuPG. The update introduced a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that GnuPG incorrectly handled importing keys with certain crafted subkey data. If a user or automated...

5.5AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2025/07/08 5:57 p.m.•10 views

USN-7626-1: Git vulnerabilities

Avi Halachmi discovered that Git incorrectly managed file modification constraints with Gitk. An attacker could possibly use this issue to create or write to arbitrary files on the system. CVE-2025-27613 Avi Halachmi discovered that Git incorrectly handled arguments when invoking the Gitk utility...

8.6CVSS8.2AI score0.02775EPSS
Exploits9
Ubuntu
Ubuntu
•added 2025/07/08 5:20 p.m.•6 views

USN-7594-3: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - RISC-V architecture; - User-Mode Linux UML; - x...

8.8CVSS7.1AI score0.23278EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 1:24 p.m.•7 views

USN-7625-1: OnionShare vulnerabilities

It was discovered that OnionShare could be exploited when run with the --debug argument. A local attacker could possibly use this issue to access sensitive information. This issue only affected Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. CVE-2018-19960 It was discovered that OnionShare could be blocke...

7.5CVSS7AI score0.01374EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 11:48 a.m.•4 views

USN-7624-1: FreeRDP vulnerability

It was discovered that FreeRDP incorrectly handled certain RDP packets. A remote attacker could possibly use this issue to cause FreeRDP to crash, resulting in a denial of service...

6.5CVSS6.9AI score0.00416EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 5:47 a.m.•5 views

USN-7010-2: DCMTK regression

USN-7010-1 fixed vulnerabilities in DCMTK. The update introduced a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Jinsheng Ba discovered that DCMTK incorrectly handled certain requests. If a user or an automated system were tricked into...

7.5CVSS7AI score0.01595EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 3:48 a.m.•7 views

USN-7623-1: Ghostscript vulnerabilities

It was discovered that OpenJPEG, vendored in Ghostscript did not correctly handle large image files. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubuntu...

9.8CVSS7AI score0.01425EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/08 12:35 a.m.•13 views

USN-7622-1: jQuery vulnerabilities

It was discovered that jQuery did not correctly handle HTML tags. An attacker could possibly use this issue to execute a cross-site scripting XSS attack. This issue only affected Ubuntu 14.04 LTS. CVE-2012-6708 It was discovered that jQuery did not correctly handle unsanitized source objects due ...

6.9CVSS6.8AI score0.99019EPSS
Exploits19
Ubuntu
Ubuntu
•added 2025/07/07 1:13 p.m.•4 views

USN-7620-1: File::Find::Rule vulnerability

Kevin Ryde discovered that File::Find::Rule incorrectly handled certain file names. An attacker could possibly use this issue to execute arbitrary code...

8.8CVSS8AI score0.00736EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/07 12:29 p.m.•9 views

USN-7619-1: libssh vulnerabilities

Ronald Crane discovered that libssh incorrectly handled certain base64 conversions. An attacker could use this issue to cause libssh to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-4877 Ronald Crane discovered that libssh incorrectly handled the...

8.8CVSS6.8AI score0.02394EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/07 9:59 a.m.•7 views

USN-7615-2: ClamAV vulnerabilities

USN-7615-1 fixed several vulnerabilities in ClamAV. This update provides the corresponding update for Ubuntu 20.04 LTS. Original advisory details: It was discovered that ClamAV incorrectly handled scanning UDF files. A remote attacker could possibly use this issue to cause ClamAV to crash,...

9.8CVSS8.9AI score0.01535EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/04 3:25 p.m.•11 views

USN-7609-3: Linux kernel (IBM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; CVE-2025-38001, CVE-2025-37798, CVE-2025-37932,...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/04 3:20 p.m.•5 views

USN-7591-5: Linux kernel (Intel IoTG) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS7.3AI score0.02033EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/04 3:15 p.m.•7 views

USN-7618-1: Linux kernel (OEM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Bluetooth drivers; - Netfilter; - Network traffic control; CVE-2025-37890, CVE-2025-37918, CVE-2025-37932,...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/04 2:24 p.m.•8 views

USN-7605-2: Linux kernel (Low Latency) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS7.4AI score0.23278EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/03 6:56 p.m.•7 views

USN-7608-4: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

7.8CVSS7AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/03 6:15 p.m.•12 views

USN-7617-1: libtpms vulnerability

It was discovered that libtpms did not properly manage memory when performing crafted cryptographic operations. An attacker could possibly use this issue to cause a denial of service...

5.9CVSS5.3AI score0.00135EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/03 6:3 p.m.•9 views

USN-7585-6: Linux kernel (BlueField) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00246EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/02 6:53 p.m.•3 views

USN-7616-1: logback vulnerabilities

It was discovered that logback could read malicious configuration files from LDAP servers. An attacker with the required permissions could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. CVE-2021-42550 It was...

8.5CVSS7.4AI score0.04439EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/07/02 12:46 p.m.•6 views

USN-7615-1: ClamAV vulnerabilities

It was discovered that ClamAV incorrectly handled scanning UDF files. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2025-20234 It was discovered that ClamAV incorrectly handled scanning PDF files. A remote attacker could use this...

9.8CVSS8.8AI score0.01535EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/02 8:20 a.m.•7 views

USN-7614-1: pcs vulnerabilities

Cedric Buissart discovered that pcs did not correctly handle certain parameters. An attacker could possibly use this issue to leak sensitive information or elevate their privileges. This issue only affected Ubuntu 16.04 LTS. CVE-2018-1086 Ondrej Mular discovered that pcs did not correctly handle...

8.8CVSS6.6AI score0.01825EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/07/02 5:37 a.m.•4 views

USN-7613-1: mongo-c-driver vulnerabilities

Karman Liu discovered that mongo-c-driver did not correctly handle certain memory operations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2024-6381 Karman Liu discovered that mongo-c-driver did not correctly handle certain memory operation...

8.4CVSS6.9AI score0.00734EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/07/02 4:59 a.m.•6 views

USN-7612-1: Flask-CORS vulnerabilities

It was discovered that Flask-CORS did not correctly handle certain regular expressions. A remote attacker could possibly use this issue to leak sensitive information or bypass authentication mechanisms. CVE-2024-6839 It was discovered that Flask-CORS allowed certain CORS headers to be enabled by...

7.5CVSS6.2AI score0.00677EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/07/02 12:7 a.m.•7 views

USN-7611-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; CVE-2025-38000, CVE-2025-37890, CVE-2025-38001, CVE-2025-37997, CVE-2025-3793...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 11:53 p.m.•13 views

USN-7610-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Netfilter; - Network traffic control; CVE-2025-38001, CVE-2025-37997, CVE-2025-37798, CVE-2025-38000, CVE-2025-3793...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 11:8 p.m.•16 views

USN-7609-2: Linux kernel (Real-time) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; CVE-2025-38001, CVE-2025-37798, CVE-2025-37932,...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 10:57 p.m.•13 views

USN-7609-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - InfiniBand drivers; - Netfilter; - Network traffic control; CVE-2025-38001, CVE-2025-37798, CVE-2025-37932,...

7.8CVSS7.1AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 10:28 p.m.•8 views

USN-7608-3: Linux kernel (Real-time) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

7.8CVSS7AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 10:22 p.m.•10 views

USN-7608-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

7.8CVSS7AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 10:4 p.m.•6 views

USN-7607-2: Linux kernel (FIPS) vulnerabilities

It was discovered that a use-after-free vulnerability existed in the Bluetooth stack in the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-3640 Several security issues were discovered in the Linux kernel. An...

8.8CVSS7.5AI score0.03558EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/07/01 8:5 p.m.•13 views

USN-7608-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - SMB network file system; - Memory management; - Netfilter; - Network traffic control; CVE-2025-37890...

7.8CVSS7AI score0.00369EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/07/01 7:10 p.m.•10 views

USN-7607-1: Linux kernel vulnerabilities

It was discovered that a use-after-free vulnerability existed in the Bluetooth stack in the Linux kernel. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-3640 Several security issues were discovered in the Linux kernel. An...

8.8CVSS7.5AI score0.03558EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/06/30 6:29 p.m.•9 views

USN-7606-1: Linux kernel (OEM) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS7.4AI score0.23278EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/30 6:22 p.m.•6 views

USN-7585-5: Linux kernel (HWE) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00246EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/30 5:40 p.m.•9 views

USN-7595-5: Linux kernel vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00571EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/06/30 5:22 p.m.•5 views

USN-7605-1: Linux kernel vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS7.4AI score0.23278EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/30 5:1 p.m.•9 views

USN-7604-2: Sudo vulnerability

USN-7604-1 fixed CVE-2025-32462 in sudo. This update provides the corresponding fixes for Ubuntu 20.04 LTS, Ubuntu 18.04 LTS, Ubuntu 16.04 LTS, and Ubuntu 14.04 LTS. Original advisory details: Rich Mirch discovered that Sudo incorrectly handled the host option. In environments where per-host rule...

8.8CVSS6.7AI score0.03239EPSS
Exploits12
Ubuntu
Ubuntu
•added 2025/06/30 2:47 p.m.•37 views

USN-7604-1: Sudo vulnerabilities

Rich Mirch discovered that Sudo incorrectly handled the host option. In environments where per-host rules are configured in the sudoers file, a local attacker could use this issue to bypass the host restrictions. CVE-2025-32462 Rich Mirch discovered that Sudo incorrectly handled the chroot option...

9.3CVSS7AI score0.47467EPSS
Exploits77
Ubuntu
Ubuntu
•added 2025/06/30 8:10 a.m.•5 views

USN-7582-2: Samba regression

USN-7582-1 fixed vulnerabilities in Samba. The update introduced a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Evgeny Legerov discovered that Samba incorrectly handled buffers in certain GSSAPI routines of Heimdal. A remote attacker...

7.5AI score0.62015EPSS
Exploits1References1
Ubuntu
Ubuntu
•added 2025/06/30 4:29 a.m.•8 views

USN-7603-1: Composer vulnerabilities

Thomas Chauchefoin discovered that Composer did not correctly handle certain arguments. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. CVE-2022-24828, CVE-2023-43655 Ed Cradoc...

8.8CVSS7.5AI score0.03255EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/26 2:19 p.m.•6 views

USN-7599-2: pip vulnerability

USN-7599-1 fixed vulnerabilities in python-urllib3. This update provides the corresponding update for python-pip for CVE-2025-50181. Original advisory details: Jacob Sandum discovered that urllib3 handled redirects even when they were explicitly disabled while using the PoolManager. An attacker...

6.1CVSS6.6AI score0.004EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/06/26 1:53 p.m.•5 views

USN-7600-1: libxslt vulnerability

It was discovered that libxslt could be made to expose sensitive information about address space layout. An attacker could possibly use this issue to bypass Address Space Layout Randomization ASLR protections...

6.5CVSS7.1AI score0.01092EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/26 12:34 p.m.•16 views

USN-7602-1: Linux kernel (Xilinx ZynqMP) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS7.6AI score0.13626EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/06/26 12:30 p.m.•9 views

USN-7594-2: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - RISC-V architecture; - User-Mode Linux UML; - x...

8.8CVSS7.1AI score0.23278EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/26 12:19 p.m.•4 views

USN-7595-4: Linux kernel vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00571EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/06/26 11:6 a.m.•7 views

USN-7601-1: libarchive vulnerabilities

It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could possibly use this issue to execute arbitrary code or cause a denial of service. CVE-2025-5914 It was discovered that libarchive incorrectly handled certain RAR archive files. An attacker could...

7.8CVSS6.6AI score0.00326EPSS
Exploits2
Total number of security vulnerabilities10875