Ubuntu Security Notices USN-8235-1 USN-8235-1: ITK vulnerabilities Publication date 7 May 2026 Overview Several security issues were fixed in ITK. Releases 16.04 LTS Open side navigation Close side navigation Packages Details Update instructions References Related notices Packages insighttoolkit - Toolkit for N-dimensional scientific image processing, segmentation, and registration Details It was discovered that Expat, vendored in ITK incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. ( CVE-2022-25235 , CVE-2022-25236 ) It was discovered that Expat, vendored in ITK incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute arbitrary code. ( CVE-2022-25235 , CVE-2022-25236 ) Update instructions In general, a standard system update will make all the necessary changes. Learn more about how to get the fixes. The problem can be corrected by updating your system to the following package versions: Ubuntu Release Package Version 16.04 LTS xenial libinsighttoolkit3.20 – 3.20.1+git20120521-6ubuntu0.1~esm1 Ubuntu Pro Fix available with Ubuntu Pro via ESM Apps. A community fix might become publicly available in the future. Reduce your security exposure Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines. Get Ubuntu Pro References CVE-2022-25236 CVE-2022-25235 CVE-2022-25236 CVE-2022-25235 Related notices USN-8240-1 USN-5455-1 USN-5288-1 USN-8240-1 USN-5455-1 USN-5288-1