Ubuntu is a organization tracked across 50 threat clusters and 613 intelligence report mentions on ThreatCluster. First observed October 23, 2025; most recent activity July 16, 2026.
A critical vulnerability, CVE-2026-42945, has been discovered in the NGINX web server's ngx_http_rewrite_module, allowing unauthenticated attackers to execute remote code or crash servers. This heap-based buffer…
A supply chain attack has compromised the DAEMON Tools software installers, which began on April 8, 2026. Kaspersky identified that these trojanized installers, signed with legitimate digital certificates, have affected…
Recent updates to OpenSSL have revealed multiple vulnerabilities affecting various Ubuntu LTS versions. CVE-2026-2673, discovered by Viktor Dukhovni, involves incorrect negotiation of key exchange groups in TLS 1.3…
Multiple vulnerabilities in GnuTLS have been identified, primarily affecting Ubuntu 18.04 LTS and 20.04 LTS. A timing side-channel vulnerability (CVE-2024-0553) could allow remote attackers to recover sensitive…
Multiple vulnerabilities were identified in the Authlib library used in Ubuntu systems, specifically affecting versions 24.04 LTS and 26.04 LTS. Discovered by researchers Jay Neiva, Mauro Carrillo, and Johnny Deuss,…
Recent security updates for Python 3.10, 3.12, and 3.15 address critical vulnerabilities impacting various systems. Key vulnerabilities include CVE-2026-1502, which allows HTTP header injection, and CVE-2026-6100, which…
A vulnerability in the ldns library affects Ubuntu systems, allowing remote attackers to inject arbitrary DNS responses due to improper validation of DNS responses when used as a stub resolver over UDP. Discovered by…
A critical vulnerability in Linux KVM, named Januscape (CVE-2026-53359), has been discovered after lying dormant for 16 years. This flaw allows attackers with root access in a guest virtual machine to escape to the host…
A local privilege escalation vulnerability, tracked as CVE-2026-3888, has been identified in default installations of Ubuntu Desktop 24.04 and later. Discovered by Qualys, the flaw arises from an unintended interaction…
A critical SQL injection vulnerability, tracked as CVE-2026-42167, has been identified in ProFTPD, a widely used FTP server. This flaw affects the mod_sql extension and has a CVSS severity score of 8.1. Attackers can…