Lucene search
K
UbuntuRecent

10876 matches found

Ubuntu
Ubuntu
•added 2025/05/05 4:31 p.m.•18 views

USN-7476-1: Scrapy vulnerabilities

It was discovered that Scrapy improperly exposed HTTP authentication credentials to request targets, including during redirects. An attacker could use this issue to gain unauthorized access to user accounts. This issue only affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2021-41125 It was...

8.8CVSS7AI score0.01243EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/05/05 12:5 p.m.•10 views

USN-7478-1: Corosync vulnerability

It was discovered that Corosync incorrectly handled certain large UDP packets. If encryption is disabled, or an attacker knows the encryption key, this issue could be used to cause Corosync to crash, resulting in a denial of service...

9.8CVSS6.8AI score0.00433EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/05/05 11:49 a.m.•12 views

USN-7477-1: c-ares vulnerability

It was discovered that c-ares incorrectly handled re-enqueuing certain queries. A remote attacker could possibly use this issue to cause c-ares to crash, resulting in a denial of service...

8.3CVSS6.8AI score0.00555EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/05/02 10:27 a.m.•26 views

USN-7475-1: Linux kernel (Xilinx ZynqMP) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/05/02 10:13 a.m.•25 views

USN-7461-3: Linux kernel (Xilinx ZynqMP) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - File systems infrastructure; - Ext4 file system; - Network file system NFS server...

7.8CVSS7.1AI score0.00275EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/05/01 1:54 p.m.•20 views

USN-7474-1: Docker vulnerabilities

Cory Snider discovered that Docker incorrectly handled networking packet encapsulation. An attacker could use this issue to inject internet packets in established connection, possibly causing a denial of service or bypassing firewall protections. This issue only affected Ubuntu 22.04 LTS, Ubuntu...

10CVSS7AI score0.02733EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/05/01 1:4 p.m.•24 views

USN-7472-1: Micropython vulnerabilities

Junwha Hong and Wonil Jang discovered that Micropython incorrectly handled the length of a buffer in mpvfsumount, leading to a heap-based buffer overflow vulnerability. If a user or automated system were tricked into opening a specially crafted file, an attacker could possibly use this issue to...

9.8CVSS7.5AI score0.01021EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/05/01 11:45 a.m.•13 views

USN-7473-1: Ghostscript vulnerability

It was discovered that Ghostscript incorrectly handled parsing certain PS files. An attacker could use this issue to cause Ghostscript to crash, resulting in a denial of service, or possibly bypass file path validation...

4.5CVSS5.1AI score0.00156EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/30 11:54 a.m.•14 views

USN-7315-2: PostgreSQL vulnerability

USN-7315-1 fixed a vulnerability in PostgreSQL. This update provides the corresponding update for Ubuntu 18.04 LTS. Original advisory details: Stephen Fewer discovered that PostgreSQL incorrectly handled quoting syntax in certain scenarios. A remote attacker could possibly use this issue to perfo...

8.1CVSS8.1AI score0.89472EPSS
Exploits10
Ubuntu
Ubuntu
•added 2025/04/30 11:6 a.m.•23 views

USN-7469-4: H2O vulnerability

USN-7469-1 fixed a vulnerability in Apache Traffic Server. This update provides the corresponding updates for H2O. Original advisory details: It was discovered that Apache Traffic Server exhibited poor server resource management in its HTTP/2 protocol. An attacker could possibly use this issue to...

7.5CVSS7.2AI score0.99999EPSS
Exploits19
Ubuntu
Ubuntu
•added 2025/04/29 10:23 p.m.•65 views

USN-7471-1: poppler vulnerabilities

It was discovered that poppler did not properly verify adbe.pkcs7.sha1 signatures in PDF documents. An attacker could possibly use this issue to create documents with forged signatures that are treated as legitimately signed...

4.3CVSS5AI score0.00092EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/29 4:27 p.m.•10 views

USN-7423-2: GNU binutils vulnerabilities

USN-7423-1 fixed several vulnerabilities in GNU. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that GNU binutils incorrectly handled certain inputs. An attacker could possibly use this issue to cause a crash o...

7.5CVSS6.3AI score0.01252EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/04/29 12:50 p.m.•80 views

USN-7469-3: Node.js vulnerability

USN-7469-1 fixed a vulnerability in Apache Traffic Server. This update provides the corresponding updates for Node.js. Original advisory details: It was discovered that Apache Traffic Server exhibited poor server resource management in its HTTP/2 protocol. An attacker could possibly use this issu...

7.5CVSS7.2AI score0.99999EPSS
Exploits19
Ubuntu
Ubuntu
•added 2025/04/29 7:33 a.m.•27 views

USN-7455-5: Linux kernel (AWS) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/04/28 8:27 p.m.•16 views

USN-7467-2: libxml2 vulnerabilities

USN-7467-1 fixed several vulnerabilities in libxml2. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that the libxml2 Python bindings incorrectly handled certain return values. An attacker could possibly use thi...

7.5CVSS6.6AI score0.00527EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/04/28 3:53 p.m.•32 views

USN-7469-2: Apache Tomcat vulnerability

USN-7469-1 fixed a vulnerability in Apache Traffic Server. This update provides the corresponding updates for Apache Tomcat. Original advisory details: It was discovered that Apache Traffic Server exhibited poor server resource management in its HTTP/2 protocol. An attacker could possibly use thi...

7.5CVSS7.2AI score0.99999EPSS
Exploits19
Ubuntu
Ubuntu
•added 2025/04/28 3:14 p.m.•36 views

USN-7469-1: Apache Traffic Server vulnerability

It was discovered that Apache Traffic Server exhibited poor server resource management in its HTTP/2 protocol. An attacker could possibly use this issue to cause Apache Traffic Server to crash, resulting in a denial of service...

7.5CVSS7.2AI score0.99999EPSS
Exploits19
Ubuntu
Ubuntu
•added 2025/04/28 3:4 p.m.•34 views

USN-7468-1: Linux kernel (Azure, N-Series) vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 Attila Szász discovered that the HFS+ file system...

9.1CVSS8.2AI score0.03558EPSS
Exploits9
Ubuntu
Ubuntu
•added 2025/04/28 2:30 p.m.•33 views

USN-7459-2: Linux kernel (GCP) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

8.1CVSS7.5AI score0.06197EPSS
Exploits15
Ubuntu
Ubuntu
•added 2025/04/28 12:25 p.m.•64 views

USN-7467-1: libxml2 vulnerabilities

It was discovered that the libxml2 Python bindings incorrectly handled certain return values. An attacker could possibly use this issue to cause libxml2 to crash, resulting in a denial of service. CVE-2025-32414 It was discovered that libxml2 incorrectly handled certain memory operations. A remot...

7.5CVSS6.6AI score0.00527EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/04/28 12:7 p.m.•16 views

USN-7465-1: Mistral vulnerabilities

It was discovered that Mistral incorrectly handled nested anchors in YAML files. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 18.04 LTS. CVE-2018-16848 Pierre Gaxatte discovered that Mistral incorrectly handled erroneous SSH private key...

7.5CVSS6.5AI score0.0152EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/28 12:3 p.m.•15 views

USN-7466-1: KiCad vulnerabilities

It was discovered that KiCad incorrectly handled memory when opening malicious files. An attacker could possibly use this issue to cause a denial of service or execute arbitrary commands...

7.8CVSS7.6AI score0.01736EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/04/28 12:57 a.m.•17 views

USN-7464-1: Jupyter Notebook vulnerability

It was discovered that Jupyter Notebook did not properly parse HTML comments under certain circumstances. An attacker could possibly use this issue to cause a regular expression denial of service ReDoS...

7.5CVSS6.6AI score0.0115EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/25 8:30 a.m.•36 views

USN-7455-4: Linux kernel (Oracle) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/04/24 5:43 p.m.•34 views

USN-7449-2: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...

7.8CVSS7.5AI score0.03558EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/04/24 5:8 p.m.•16 views

USN-7463-1: Linux kernel (IBM) vulnerabilities

Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2024-23848 Attila Szász discovered that the HFS+ file system...

7.8CVSS8AI score0.03558EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/04/24 4:26 p.m.•18 views

USN-7462-2: Linux kernel (AWS FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - File systems infrastructure; - Ext4 file system; - Network file system NFS server...

7.8CVSS7.1AI score0.00276EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/24 3:37 p.m.•24 views

USN-7462-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - File systems infrastructure; - Ext4 file system; - Network file system NFS server...

7.8CVSS7.1AI score0.00276EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/24 3:11 p.m.•28 views

USN-7461-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - File systems infrastructure; - Ext4 file system; - Network file system NFS server...

7.8CVSS7.1AI score0.00275EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/24 2:56 p.m.•36 views

USN-7461-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - File systems infrastructure; - Ext4 file system; - Network file system NFS server...

7.8CVSS7.1AI score0.00275EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/24 1:39 p.m.•24 views

USN-7460-1: Linux kernel (Azure FIPS) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/04/24 1:21 p.m.•15 views

USN-7459-1: Linux kernel (Intel IoTG) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

8.1CVSS7.5AI score0.06197EPSS
Exploits15
Ubuntu
Ubuntu
•added 2025/04/24 12:57 p.m.•27 views

USN-7458-1: Linux kernel (IBM) vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

8.1CVSS8AI score0.03558EPSS
Exploits4
Ubuntu
Ubuntu
•added 2025/04/24 12:40 p.m.•95 views

USN-7457-1: OpenSSH vulnerability

It was discovered that OpenSSH incorrectly handled the DisableForwarding directive. The directive would fail to disable X11 and agent forwarding, contrary to documentation and expectations...

4.3CVSS6.5AI score0.0016EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/24 12:38 p.m.•20 views

USN-7456-1: Twig vulnerabilities

Fabien Potencier discovered that Twig did not run sandbox security checks in some circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary commands. This issue only affected Ubuntu 22.04 LTS and Ubuntu 24.04 LTS. CVE-2024-45411 Jamie Schouten...

8.6CVSS8.6AI score0.00826EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/24 12:34 p.m.•27 views

USN-7455-3: Linux kernel (Real-time) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/04/24 11:50 a.m.•26 views

USN-7455-2: Linux kernel (FIPS) vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/04/24 11:18 a.m.•85 views

USN-7455-1: Linux kernel vulnerabilities

Jann Horn discovered that the watchqueue event notification subsystem in the Linux kernel contained an out-of-bounds write vulnerability. A local attacker could use this to cause a denial of service system crash or escalate their privileges. CVE-2022-0995 Several security issues were discovered i...

7.8CVSS7.3AI score0.06197EPSS
Exploits13
Ubuntu
Ubuntu
•added 2025/04/23 4:57 p.m.•73 views

USN-7454-1: libarchive vulnerabilities

It was discovered that the libarchive bsdunzip utility incorrectly handled certain ZIP archive files. If a user or automated system were tricked into processing a specially crafted ZIP archive, an attacker could use this issue to cause libarchive to crash, resulting in a denial of service, or...

7.8CVSS6AI score0.00329EPSS
Exploits2
Ubuntu
Ubuntu
•added 2025/04/23 4:18 p.m.•18 views

USN-7453-1: Linux kernel (Real-time) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...

7.8CVSS7.5AI score0.03558EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/04/23 3:29 p.m.•11 views

USN-7452-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...

7.8CVSS7.5AI score0.03558EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/04/23 3:11 p.m.•28 views

USN-7451-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...

7.8CVSS7.6AI score0.03558EPSS
Exploits8
Ubuntu
Ubuntu
•added 2025/04/23 2:50 p.m.•15 views

USN-7450-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...

7.8CVSS7.5AI score0.03558EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/04/23 2:20 p.m.•89 views

USN-7449-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; - Supe...

7.8CVSS7.5AI score0.03558EPSS
Exploits5
Ubuntu
Ubuntu
•added 2025/04/23 1:57 p.m.•6 views

USN-7446-1: mod_auth_openidc vulnerability

It was discovered that modauthopenidc incorrectly handled certain POST requests. An attacker could possibly use this issue to obtain sensitive information...

8.2CVSS6.6AI score0.00542EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/23 12:57 p.m.•21 views

USN-7448-1: Linux kernel vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.4AI score0.00824EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/04/23 12:20 p.m.•69 views

USN-7447-1: Yelp vulnerability

It was discovered that Yelp incorrectly handled paths in ghelp URLs. A remote attacker could use this issue to trick users into opening malicious downloaded help files and exfiltrate sensitive information...

7.4CVSS7.2AI score0.10598EPSS
Exploits1
Ubuntu
Ubuntu
•added 2025/04/23 12:12 p.m.•19 views

USN-7445-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPIO subsystem; - GPU drivers; - IRQ chip drivers; - Network drivers; - Mellanox network drivers; - x86 platform...

7.8CVSS7.3AI score0.00824EPSS
Exploits3
Ubuntu
Ubuntu
•added 2025/04/23 11:50 a.m.•9 views

USN-7434-2: Perl vulnerability

USN-7434-1 fixed a vulnerability in Perl. This update provides the corresponding update for Ubuntu 25.04. Original advisory details: It was discovered that Perl incorrectly handled transliterating non-ASCII bytes. A remote attacker could use this issue to cause Perl to crash, resulting in a denia...

8.4CVSS7.8AI score0.00473EPSS
Exploits0
Ubuntu
Ubuntu
•added 2025/04/23 11:45 a.m.•15 views

USN-7431-2: HAProxy vulnerability

USN-7431-1 fixed a vulnerability in HAProxy. This update provides the corresponding update for Ubuntu 25.04. Original advisory details: Aleandro Prudenzano and Edoardo Geraci discovered that HAProxy incorrectly handled certain uncommon configurations that replace multiple short patterns with a...

6.8CVSS6.5AI score0.00688EPSS
Exploits0
Total number of security vulnerabilities10876