Lucene search
K
UbuntuRecent

10875 matches found

Ubuntu
Ubuntu
•added 2025/06/11 2:48 p.m.•7 views

USN-7566-1: WebKitGTK vulnerabilities

Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious website, a remote attacker could exploit a variety of issues related to web browser security, including cross-site scripting attacks, denial of service attacks, and...

8.8CVSS7AI score0.01028EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/11 1:42 a.m.•6 views

USN-7565-1: libsoup vulnerabilities

It was discovered that libsoup did not correctly handle memory while performing UTF-8 conversions. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. CVE-2024-52531 It was discovered that libsoup could enter...

8.4CVSS7.3AI score0.00933EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/06/10 5:11 p.m.•6 views

USN-7563-1: .NET vulnerability

It was discovered that .NET did not properly validate search path in Microsoft.NETCore.App.Runtime. An attacker could possibly use this issue to execute arbitrary code...

7.5CVSS7.2AI score0.0089EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/10 1:30 p.m.•2 views

USN-7564-1: Samba vulnerability

It was discovered that Samba incorrectly handled certain group membership changes when using Kerberos authentication. A remote user could possibly use this issue to continue to access resources after being removed by an administrator...

4.9CVSS6.5AI score0.00595EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 4:59 p.m.•3 views

USN-7553-6: Linux kernel (Azure FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file...

7.8CVSS7.1AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 4:45 p.m.•5 views

USN-7553-5: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file...

7.8CVSS7.1AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 4:36 p.m.•7 views

USN-7553-4: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file...

7.8CVSS7.1AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 4:25 p.m.•6 views

USN-7550-6: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; CVE-2024-56608, CVE-2024-53168, CVE-2024-56551...

7.8CVSS7.1AI score0.00234EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 2:59 p.m.•9 views

USN-7562-1: Tomcat vulnerabilities

It was discovered that Tomcat did not include the secure attribute for session cookies when using the RemoteIpFilter with requests from a reverse proxy. An attacker could possibly use this issue to leak sensitive information. This issue was fixed for tomcat8 on Ubuntu 18.04 LTS and for tomcat9 on...

8.6CVSS7.5AI score0.23072EPSS
Exploits6
Ubuntu
Ubuntu
•added 2025/06/09 1:38 p.m.•9 views

USN-7561-1: AMD Microcode vulnerabilities

It was discovered that AMD Microcode incorrectly handled memory addresses. An attacker with local administrator privilege could possibly use this issue to cause loss of integrity of a confidential guest running under AMD SEV-SNP. CVE-2023-20584, CVE-2023-31356 Josh Eads, Kristoffer Janke, Eduardo...

7.2CVSS6.8AI score0.0052EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 1:18 p.m.•5 views

USN-7560-1: AMD Microcode vulnerability

Josh Eads, Kristoffer Janke, Eduardo Nava, Tavis Ormandy and Matteo Rizzo discovered that AMD Microcode incorrectly verified signatures. An attacker with local administrator privilege could possibly use this issue to cause loss of confidentiality and integrity of a confidential guest running unde...

7.2CVSS7.6AI score0.0052EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/09 1:2 p.m.•12 views

USN-7559-1: systemd vulnerability

Qualys discovered that systemd incorrectly handled metadata when processing application crashes. An attacker could possibly use this issue to expose sensitive information...

4.7CVSS6AI score0.00641EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/06/09 12:57 p.m.•5 views

USN-7545-2: Apport regression

USN-7545-1 fixed a vulnerability in Apport. The update introduced a regression that prevented core dumps from being generated inside containers. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Qualys discovered that Apport incorrectly handled metadata...

5.5AI score
Exploits0
Ubuntu
Ubuntu
•added 2025/06/06 10:5 a.m.•8 views

USN-7553-3: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file...

7.8CVSS7.1AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/05 3:12 p.m.•5 views

USN-7558-1: GStreamer Bad Plugins vulnerabilities

It was discovered that the AV1 codec plugin in GStreamer could be made to write out of bounds. An attacker could possibly use this issue to cause applications using the plugin to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 22.04 LTS...

8.8CVSS7.7AI score0.01559EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/05 8:52 a.m.•5 views

USN-7550-5: Linux kernel (NVIDIA) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; CVE-2024-56608, CVE-2024-56551, CVE-2024-53168...

7.8CVSS7.1AI score0.00234EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/05 4:47 a.m.•6 views

USN-7556-1: Bootstrap vulnerabilities

It was discovered that Bootstrap did not correctly sanitize certain input in the carousel component. An attacker could possibly use this issue to execute a cross-site scripting XSS attack. CVE-2024-6484, CVE-2024-6531 It was discovered that Bootstrap did not correctly sanitize certain input in th...

6.4CVSS6.9AI score0.00494EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 5:3 p.m.•3 views

USN-7555-1: Django vulnerability

It was discovered that Django incorrectly handled certain unescaped request paths. An attacker could possibly use this issue to perform a log injection...

5.3CVSS7.5AI score0.006EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 10:4 a.m.•8 views

USN-7554-3: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2...

7.8CVSS7AI score0.00309EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 9:54 a.m.•4 views

USN-7554-2: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2...

7.8CVSS7AI score0.00309EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 9:40 a.m.•5 views

USN-7554-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2...

7.8CVSS7AI score0.00309EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 9:20 a.m.•6 views

USN-7553-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file...

7.8CVSS7.1AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 9:9 a.m.•5 views

USN-7553-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Clock framework and drivers; - GPU drivers; - Parport drivers; - Ext4 file system; - JFFS2 file system; - JFS file...

7.8CVSS7.1AI score0.00251EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 8:26 a.m.•3 views

USN-7550-4: Linux kernel (Azure CVM) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; CVE-2024-53168, CVE-2024-56551, CVE-2024-56608...

7.8CVSS7.1AI score0.00234EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/04 4:16 a.m.•5 views

USN-7552-1: Wireshark vulnerabilities

It was discovered that Wireshark did not correctly handle recursion. If a user or system were tricked into opening a specially crafted file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and...

9.8CVSS7AI score0.03879EPSS
Exploits10
Ubuntu
Ubuntu
•added 2025/06/03 4:26 p.m.•6 views

USN-7551-1: libvpx vulnerability

It was discovered that libvpx did not properly manage memory. An attacker could possibly use this issue to cause applications using libvpx to crash, resulting in a denial of service, or possibly execute arbitrary code...

5.4CVSS5.8AI score0.00493EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/03 3:59 p.m.•5 views

USN-7550-3: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; CVE-2024-53168, CVE-2024-56551, CVE-2024-56608...

7.8CVSS7.1AI score0.00234EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/03 3:17 p.m.•3 views

USN-7550-2: Linux kernel (Real-time) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; CVE-2024-56608, CVE-2024-56551, CVE-2024-53168...

7.8CVSS7.1AI score0.00234EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/03 1:43 p.m.•8 views

USN-7550-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Sun RPC protocol; CVE-2024-56608, CVE-2024-56551, CVE-2024-53168...

7.8CVSS7.1AI score0.00234EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/03 9:23 a.m.•3 views

USN-7508-2: Open VM Tools vulnerability

USN-7508-1 fixed a vulnerability in Open VM Tools. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS Original advisory details: It was discovered that Open VM Tools incorrectly handled certain file operations. An attacker in a guest could use this issue to...

6.1CVSS6.5AI score0.00247EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/02 2:53 p.m.•6 views

USN-7549-1: Twig vulnerability

It was discovered that Twig did not correctly handle securing user input. An attacker could possibly use this issue to cause Twig to expose sensitive information if it opened a specially crafted file. CVE-2024-45411...

8.6CVSS8.2AI score0.00826EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/02 2:31 p.m.•2 views

USN-7548-1: MariaDB vulnerabilities

Several security issues were discovered in MariaDB and this update includes a new upstream MariaDB version to fix these issues. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes...

6.8CVSS6.4AI score0.00819EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/06/02 9:4 a.m.•2 views

USN-7547-1: Tornado vulnerability

It was discovered that Tornado inefficiently handled requests when parsing certain form data. An attacker could possibly use this issue to increase resource utilization leading to a denial of service. This issue was only addressed in Ubuntu 24.04 LTS and Ubuntu 22.04 LTS. CVE-2025-47287...

7.5CVSS6.9AI score0.00667EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/05/29 3:28 p.m.•9 views

USN-7516-9: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

7.8CVSS7.2AI score0.08906EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/29 3:16 p.m.•7 views

USN-7510-8: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

7.8CVSS7.4AI score0.13626EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/29 1:48 p.m.•6 views

USN-7545-1: Apport vulnerability

Qualys discovered that Apport incorrectly handled metadata when processing application crashes. An attacker could possibly use this issue to leak sensitive information...

4.7CVSS5.3AI score0.00327EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/05/29 1:43 p.m.•2 views

USN-7530-1: ADOdb vulnerability

It was discovered that ADOdb incorrectly handled SQL input. A remote attacker could use this issue to execute arbitrary SQL commands...

10CVSS8.8AI score0.00664EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/05/29 12:10 p.m.•5 views

USN-7516-8: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

7.8CVSS7.2AI score0.08906EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/29 12:3 p.m.•7 views

USN-7516-7: Linux kernel (AWS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - Block layer subsystem; - Drivers core; - Network block device driver;...

7.8CVSS7.2AI score0.08906EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/29 11:51 a.m.•5 views

USN-7513-5: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers;...

8.1CVSS7AI score0.00737EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/05/29 9:0 a.m.•8 views

LSN-0112-1: Kernel Live Patch Security Notice

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix use-after-free due to delegation race A delegation break could arrive as soon as we've called vfssetlease. A delegation break runs a callback which immediately in nfsd4cbrecallprepare adds the delegation to delrecalllru...

7.8CVSS7.1AI score0.06197EPSS
Exploits10
Ubuntu
Ubuntu
•added 2025/05/28 11:4 p.m.•4 views

USN-7537-2: net-tools regression

USN-7537-1 fixed a vulnerability in net-tools that caused a regression. This update fixes the problem. Original advisory details: It was discovered that net-tools incorrectly handled certain inputs. An attacker could possible use this issue to cause a crash or execute arbitrary code...

5.7AI score
Exploits0References1
Ubuntu
Ubuntu
•added 2025/05/28 7:34 p.m.•6 views

USN-7544-1: Setuptools vulnerability

It was discovered that setuptools did not properly sanitize paths. An attacker could possibly use this issue to write files to arbitrary locations on the filesystem...

8.8CVSS7.2AI score0.01479EPSS
Exploits4
Ubuntu
Ubuntu
•added 2025/05/28 2:41 p.m.•10 views

USN-7542-1: Kerberos vulnerability

It was discovered that Kerberos allowed the usage of weak cryptographic standards. An attacker could possibly use this issue to expose sensitive information. This update introduces the allowrc4 and allowdes3 configuration options, and disables the usage of RC4 and 3DES ciphers by default. Users a...

5.9CVSS6.9AI score0.00276EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/05/28 2:27 p.m.•8 views

USN-7543-1: libsoup vulnerabilities

Jan Różański discovered that libsoup incorrectly handled certain headers when sending HTTP/2 requests over TLS. An attacker could possibly use this issue to cause a denial of service. This issue only affected libsoup3 in Ubuntu 24.04 LTS, Ubuntu 24.10, and Ubuntu 25.04. CVE-2025-32908 Jan Różańsk...

7.5CVSS6.5AI score0.00502EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/28 9:18 a.m.•7 views

USN-7541-1: GNU C Library vulnerability

It was discovered that the GNU C Library incorrectly search LDLIBRARYPATH to determine which library to load when statically linked setuid binary calls dlopen. A local attacker could possibly use this issue to cause a denial of service or execute arbitrary code...

7.8CVSS7.3AI score0.0039EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/28 8:55 a.m.•6 views

USN-7540-1: Linux kernel (Raspberry Pi) vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Attila Szász discovered that the HFS+ file system...

9.1CVSS8AI score0.08906EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/05/28 8:35 a.m.•6 views

USN-7539-1: Linux kernel (Raspberry Pi) vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Attila Szász discovered that the HFS+ file system...

9.1CVSS8AI score0.08906EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/05/28 8:19 a.m.•6 views

USN-7510-7: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Network block device...

7.8CVSS7.4AI score0.13626EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/28 8:7 a.m.•4 views

USN-7513-4: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers;...

8.1CVSS7AI score0.00737EPSS
Exploits2
Total number of security vulnerabilities10875