Ubuntu Security Notices USN-8240-1 USN-8240-1: Swish-e vulnerabilities Publication date 7 May 2026 Overview Several security issues were fixed in Swish-e. Releases 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS Open side navigation Close side navigation Packages Details Update instructions References Related notices Packages swish-e - Simple Web Indexing System for Humans - Enhanced Details It was discovered that Expat, vendored in Swish-e incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. ( CVE-2022-25235 , CVE-2022-25236 ) It was discovered that Expat, vendored in Swish-e incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. ( CVE-2022-25235 , CVE-2022-25236 ) Update instructions In general, a standard system update will make all the necessary changes. Learn more about how to get the fixes. The problem can be corrected by updating your system to the following package versions: Ubuntu Release Package Version 26.04 LTS resolute swish-e – 2.4.7-7.1ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 24.04 LTS noble swish-e – 2.4.7-6.2ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 22.04 LTS jammy swish-e – 2.4.7-6.1ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 20.04 LTS focal swish-e – 2.4.7-6ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 18.04 LTS bionic swish-e – 2.4.7-5ubuntu1+esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. 16.04 LTS xenial swish-e – 2.4.7-4ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. Reduce your security exposure Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines. Get Ubuntu Pro References CVE-2022-25236 CVE-2022-25235 CVE-2022-25236 CVE-2022-25235 Related notices USN-5455-1 USN-5288-1 USN-5455-1 USN-5288-1