Ubuntu has released security updates across multiple LTS releases to address critical flaws in YARD, Postfix, Tomcat, and Robocode. A path sanitization error inside the YARD documentation server could allow attackers to read sensitive files directly from the host machine. Meanwhile, Postfix risks a complete service disruption when handling malformed network traffic, and Tomcat suffers from several authentication bypasses that weaken account lockout protections alongside authorization rules. Developers using Robocode must apply these patches right away because multiple input validation failures currently leave systems open to arbitrary code execution and unauthorized file deletion.
[USN-8394-1] YARD vulnerability
[USN-8253-2] Postfix vulnerability
[USN-8383-1] Tomcat vulnerabilities
[USN-8385-1] Robocode vulnerabilities
Ubuntu released a batch of security notices to address critical flaws across several widely used software packages. The Apache HTTP Server update fixes an HTTP cookie handling bug that could allow remote attackers to trigger resource exhaustion and cause service outages. Nano receives a separate patch that resolves unsafe directory permissions and status line bugs capable of causing crashes or leaking sensitive data. The majority of these notices target the Linux kernel across dozens of Ubuntu releases and cloud environments, where engineers corrected dangerous memory handling errors and logic flaws that could let local attackers escalate privileges or break out of containers.
[USN-8384-1] Apache HTTP Server vulnerability
[USN-8386-1] Nano vulnerabilities
[USN-8393-1] Linux kernel (Azure FIPS) vulnerabilities
[USN-8361-2] Linux kernel (FIPS) vulnerability
[USN-8388-1] Linux kernel vulnerabilities
[USN-8392-1] Linux kernel vulnerabilities
[USN-8391-1] Linux kernel (Raspberry Pi) vulnerabilities
[USN-8390-1] Linux kernel vulnerability
[USN-8389-1] Linux kernel vulnerabilities
Ubuntu has rolled out a comprehensive set of security patches that address critical flaws in widely used software including GoBGP, nginx, MySQL, and Exim. Attackers could exploit these weaknesses to crash network services, leak confidential information, or run malicious code by sending specially crafted requests to vulnerable systems. IT teams need to upgrade their packages right away because the affected Ubuntu versions span from legacy 14.04 LTS releases all the way up to the latest 26.04 LTS builds. A routine system update will handle everything automatically and keep your servers secure against these newly disclosed threats.
[USN-8348-1] GoBGP vulnerabilities
[USN-8344-3] pip vulnerability
[USN-8130-2] GStreamer Base Plugins vulnerability
[USN-8375-1] nginx vulnerabilities
[USN-8363-2] MySQL vulnerabilities
[USN-8376-1] FRR vulnerabilities
[USN-8377-1] Template-Toolkit vulnerability
[USN-8379-1] urllib3 vulnerabilities
[USN-8380-1] Twisted vulnerability
[USN-8378-1] libwww-perl vulnerability
[USN-8382-1] Exim vulnerabilities
XanMod just released kernels 6.18.34 LTS and 7.0.11 for Debian and Ubuntu systems, packing in scheduler tweaks, memory management upgrades, and network stack improvements that keep desktops responsive under heavy loads. The update ships with Google's multigenerational LRU framework as the default, while Cloudflare's TCP collapse and BBRv3 congestion control handle data traffic more efficiently. Users can install it through standard APT commands, but anyone relying on NVIDIA drivers, OpenZFS, or virtualization tools should grab DKMS dependencies first since those modules often lag behind new kernel releases. The developers also bundled AMD V-Cache optimizations and Steam Deck hardware support, making this a solid upgrade for workstation and gaming builds that need consistent performance without the stock kernel bloat.
Ubuntu issued a comprehensive set of security updates targeting multiple widely used applications and system components. These patches resolve serious vulnerabilities in tools like XZ Utils, the Linux kernel for cloud platforms, Dovecot email server, and several Java libraries that could allow attackers to escalate privileges or crash systems. Many of the identified flaws stem from improper memory handling, missing input validation, and flawed sandbox enforcement, which collectively expose users to denial of service attacks and unauthorized code execution. System administrators should apply these updates immediately through standard package managers to restore full protection across their Ubuntu environments.
[USN-8362-1] XZ Utils vulnerability
[USN-8282-2] Unbound vulnerabilities
[USN-8374-1] Linux kernel vulnerabilities
[USN-8238-2] EditorConfig vulnerability
[USN-8372-1] age vulnerability
[USN-8366-1] Luanti vulnerabilities
[USN-8368-1] libeconf vulnerability
[USN-8367-1] tar-fs vulnerabilities
[USN-8369-1] Apache Tomcat Connectors vulnerability
[USN-8364-1] Apache Commons Lang vulnerability
[USN-8365-1] Dovecot vulnerabilities
Ubuntu released a major security update that addresses numerous vulnerabilities in both the Linux kernel and MySQL database software. The kernel patches resolve serious flaws like Dirty Frag and Fragnesia, which could allow local attackers to escalate privileges or escape container restrictions. Additional fixes target memory leaks, null pointer dereferences, and race conditions within AppArmor notifications alongside several networking subsystems across multiple Ubuntu releases. Rebooting is mandatory after applying these MySQL and kernel upgrades to ensure all protective measures take effect properly.
[USN-8373-1] Linux kernel vulnerabilities
[USN-8370-1] Linux kernel vulnerabilities
[USN-8371-1] Linux kernel vulnerabilities
[USN-8363-1] MySQL vulnerabilities
The Liquorix Linux Kernel 7.0-12 drops straight onto Debian and Arch systems to strip away default scheduling delays that usually make desktops feel sluggish during live audio mixing or fast-paced gaming. Stock kernels often stutter when background updates hijack CPU cycles, so this patched build tightens interrupt handling and frequency scaling to keep frame pacing smooth. Running the official curl script pulls precompiled binaries and configures the bootloader automatically, though users should always keep a fallback kernel handy since real-time tuning occasionally breaks proprietary graphics stacks. Swap it out when raw responsiveness matters more than broad hardware compatibility and let the system handle interactive workloads without waiting for background tasks to catch up.
Ubuntu released a major batch of security notices to address critical flaws across dozens of widely used packages. These updates target everything from file transfer tools like rsync and web servers running nginx to core system components including the Linux kernel and authentication daemons. Administrators managing older LTS releases alongside newer distributions will find fixes for vulnerabilities that could otherwise allow remote attackers to escalate privileges or bypass network controls. Applying these patches immediately through standard system upgrades remains essential to prevent potential data breaches and service disruptions across all supported Ubuntu environments.
[USN-8349-1] rsync vulnerabilities
[USN-8357-1] Qt Declarative vulnerability
[USN-8055-2] Evolution Data Server vulnerability
[USN-8350-1] Linux kernel (NVIDIA Tegra) vulnerabilities
[USN-8351-1] Linux kernel (Low Latency) vulnerabilities
[LSN-0120-1] Linux kernel vulnerability
[USN-8361-1] Linux kernel vulnerability
[USN-8209-2] Little CMS vulnerability
[USN-8360-1] sslh vulnerability
[USN-8359-1] NNCP vulnerability
[USN-8358-1] haveged vulnerability
[USN-8355-1] SSSD vulnerability
[USN-8352-1] LibreOffice vulnerability
[USN-8356-1] GNU SASL vulnerability
[USN-8354-1] nginx vulnerabilities
[USN-8353-1] Exim vulnerability
Ubuntu issued a batch of security notices on May 28 and 29, 2026 to patch critical flaws across several widely used packages. The Apache HTTP Server correction finally restores the mod_http2 module after an earlier update accidentally broke its loading process. Meanwhile, developers temporarily rolled back a pip fix for CVE-2025-66471 because the initial patch triggered installation failures on Ubuntu 22.04 through 26.04. A separate vulnerability in the LibTIFF library also required immediate attention since malformed TIFF metadata could crash QT WebEngine, GDAL, or Texmaker and potentially allow attackers to execute arbitrary code.
[USN-8338-2] Apache HTTP Server regression
[USN-8344-2] pip regression
[USN-8347-1] QT WebEngine vulnerability
[USN-8345-1] GDAL vulnerability
[USN-8346-1] Texmaker vulnerabilities
Ubuntu released a batch of security notices that tackle serious flaws across dozens of software packages and kernel variants. Attackers could exploit these weaknesses to crash systems, run malicious code, escalate privileges, or overwrite files by sending specially crafted network requests. The fixes cover multiple Ubuntu versions ranging from the older 14.04 release all the way up to 26.04, impacting everything from basic DNS utilities and file sharing servers to complex neural network tools and Azure cloud kernels.
[USN-8308-1] Dnsmasq vulnerability
[USN-8309-1] libssh2 vulnerability
[USN-8306-1] Samba vulnerabilities
[USN-8303-1] GitPython vulnerabilities
[USN-8167-2] xdg-dbus-proxy vulnerability
[USN-8063-2] Protocol Buffers vulnerability
[USN-7972-2] OpenCC vulnerability
[USN-8307-1] ONNX vulnerability
[USN-8280-3] Linux kernel (IoT) vulnerabilities
[USN-8310-1] Linux kernel (Azure) vulnerabilities
[USN-8278-2] Linux kernel (Azure) vulnerabilities
[USN-8305-2] Linux kernel (Low Latency) vulnerabilities
Ubuntu published a series of security notices covering numerous vulnerabilities across popular applications and specialized Linux kernel builds. These patches address dangerous flaws in tools like rclone, .NET, Vim, and NLTK that could let malicious actors run unauthorized commands or access private information. Additional updates for low latency, NVIDIA Tegra, Intel IoT Realtime, and standard NVIDIA kernels also resolve deep subsystem issues capable of triggering privilege escalation or full system takeover. Users running any supported Ubuntu release should install the latest package versions right away to close these security gaps.
[USN-8299-1] Rclone vulnerabilities
[USN-8291-3] Linux kernel (Low Latency) vulnerabilities
[USN-8296-2] Linux kernel (NVIDIA Tegra) vulnerabilities
[USN-8301-1] SimpleEval vulnerability
[USN-8300-1] ngtcp2 vulnerability
[USN-8305-1] Linux kernel (Intel IoTG Real-time) vulnerabilities
[USN-8279-3] Linux kernel (NVIDIA Tegra IGX) vulnerabilities
[USN-8289-2] Linux kernel (NVIDIA) vulnerabilities
[USN-8298-1] .NET vulnerability
[USN-8302-1] NLTK vulnerabilities
[USN-8304-1] Vim vulnerabilities
The Liquorix Linux Kernel 7.0-11 builds on the stable 7.0.10 base to deliver tighter scheduler tuning and real-time patches aimed at audio production and gaming performance. Desktop users will notice fewer buffer underruns during recording sessions and more consistent frame delivery because the kernel prioritizes foreground tasks over background noise. Installing it on Debian or Arch systems is as simple as running a single curl script, though proprietary drivers like Nvidia may still need manual recompilation after rebooting. Testing the update in a safe environment first keeps things from breaking when hardware quirks inevitably show up.
XanMod just dropped kernels 7.0.10 and 6.18.33 LTS to give Debian and Ubuntu systems a noticeable performance bump without requiring manual patching. The builds ship with LLVM ThinLTO, Google multigenerational LRU, BBRv3 networking, and an AMD 3D V-Cache driver that handles modern hardware quirks better than stock options. Installing them through the official APT repository is straightforward, but users should keep a fallback boot entry handy since proprietary drivers like NVIDIA or VirtualBox often break until maintainers catch up. Heavy workloads and sustained multitasking run noticeably smoother, though casual desktop users might find the extra tuning unnecessary compared to standard kernel stability.
Liquorix Linux Kernel 7.0-10 drops with a targeted patch that fixes a network stack bug causing dropped packets when zerocopy memory operations fail. The build keeps its usual focus on tight frame pacing and stable audio buffers, making it a solid choice for desktop users who hate background stutter. Installing it takes just one curl command to pull the package into Debian, Ubuntu, or Arch systems, though keeping a fallback kernel around remains essential. Skip this update if your workflow depends on aggressive power saving, but grab it when you need a snappier desktop experience without the usual scheduler interference.
Ubuntu released a batch of security notices that address critical vulnerabilities across multiple Linux kernel variants and several user space applications. These patches cover cloud-specific kernels for Azure, Google Cloud, and Oracle alongside FIPS-compliant and low latency variants across Ubuntu releases from 18.04 through 26.04. Exploits in the cryptographic subsystems and network drivers could let attackers escalate privileges or break out of containers, while distinct bugs in Evince and node-path-to-regexp open doors for arbitrary code execution and denial of service attacks.
[USN-8296-1] Linux kernel (FIPS) vulnerabilities
[USN-8277-2] Linux kernel (Oracle) vulnerabilities
[USN-8291-2] Linux kernel (Low Latency) vulnerabilities
[USN-8295-1] Evince vulnerability
[USN-8290-1] Path-to-Regexp vulnerability
[USN-8279-2] Linux kernel (GCP) vulnerabilities
[USN-8281-2] Linux kernel (Azure) vulnerabilities
[USN-8297-1] Linux kernel (GCP) vulnerabilities
[USN-8280-2] Linux kernel (Azure)vulnerabilities
Ubuntu released a batch of security notices to address critical flaws across several widely used system packages. These patches cover essential tools such as jq, BIND9, and PostgreSQL alongside the Intel IoT Realtime kernel, closing loopholes that could let attackers run malicious code or crash entire services. Local attackers might also exploit weak sandbox configurations to delete arbitrary files on the host system. System administrators need to run a standard update right away and manually restart PostgreSQL once the installation finishes.
[USN-8202-3] jq regression
[USN-8291-1] Linux kernel (Intel IoTG Real-time) vulnerabilities
[USN-8288-1] Bubblewrap vulnerability
[USN-8287-1] XDG Desktop Portal vulnerability
[USN-8294-1] PostgreSQL vulnerabilities
[USN-8293-1] Bind vulnerabilities
[USN-8292-1] libarchive vulnerabilities
Ubuntu released a series of security updates that address critical flaws across several widely used software packages. The patches fix vulnerabilities in GStreamer media plugins, the Unbound DNS resolver, the GnuTLS library, OpenVPN, rsync file transfers, and NVIDIA Linux kernel modules. Attackers could potentially exploit these weaknesses to crash systems, execute malicious code, bypass authentication checks, or escalate local privileges depending on the affected component.
[USN-8285-1] GStreamer Good Plugins vulnerability
[USN-8282-1] Unbound vulnerabilities
[USN-8284-1] GnuTLS vulnerabilities
[USN-8286-1] OpenVPN vulnerabilities
[USN-8283-1] rsync vulnerabilities
[USN-8289-1] Linux kernel (NVIDIA) vulnerabilities
Ubuntu released a major batch of security updates that address numerous vulnerabilities across the Linux kernel and several supporting packages. The kernel patches target dozens of common vulnerability identifiers affecting everything from standard desktop installations to specialized cloud and embedded hardware builds. Critical flaws include improper permission checks in OverlayFS that could allow local privilege escalation, alongside cryptographic module errors known as Copy Fail that might enable container escapes or unauthorized access.
[USN-8273-1] Linux kernel vulnerabilities
[USN-8275-1] Linux kernel (Xilinx ZynqMP) vulnerabilities
[USN-8255-3] Linux kernel vulnerabilities
[USN-8254-3] Linux kernel (NVIDIA Tegra) vulnerabilities
[USN-8274-1] Linux kernel vulnerabilities
[USN-8280-1] Linux kernel vulnerabilities
[USN-8279-1] Linux kernel vulnerabilities
[USN-8281-1] Linux kernel vulnerabilities
[USN-8277-1] Linux kernel vulnerabilities
[USN-8278-1] Linux kernel vulnerabilities
[USN-8276-1] Highlight.js vulnerability
[USN-8272-1] Smarty vulnerability
