StackPatch is liveSee product

Back to CVE digest
Ubuntu USN · USN-8413-1

Cyborg vulnerabilities

Published: Tue, 09 Jun 2026 16:09

CVE-2026-40213CVE-2026-40214

Summary

Several security issues were fixed in Cyborg.

Details

It was discovered that Cyborg did not properly enforce project ownership in the Accelerator Request (ARQ) API. An authenticated user could possibly use this issue to delete ARQs bound to other projects' instances, resulting in a cross-tenant denial of service. (CVE-2026-40214) It was discovered that Cyborg used a permissive default policy that authorized any request carrying a valid authentication token, regardless of roles or scope, for multiple API endpoints. An authenticated user could possibly use this issue to perform unauthorized actions, such as reprogramming FPGA bitstreams on arbitrary compute nodes. (CVE-2026-40213)

Recommended actions per Ubuntu release

StackPatch playbook auto-generated per release codename and per affected package.

Ubuntu questing

  • cyborg14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-agent14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-agent

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-api14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-api

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-common14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-conductor14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-conductor

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-doc14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-doc

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • python3-cyborg14.0.0-3+deb13u1build0.25.10.1apt_upgrade

    Standard apt upgrade. Install 14.0.0-3+deb13u1build0.25.10.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y python3-cyborg

    Most apt upgrades restart their service automatically. needrestart lists anything else.

Ubuntu resolute

  • cyborg16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-agent16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-agent

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-api16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-api

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-common16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-common

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-conductor16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-conductor

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • cyborg-doc16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y cyborg-doc

    Most apt upgrades restart their service automatically. needrestart lists anything else.

  • python3-cyborg16.0.0-2ubuntu0.1apt_upgrade

    Standard apt upgrade. Install 16.0.0-2ubuntu0.1 from the apt repo.

    sudo apt-get update
sudo apt-get install --only-upgrade -y python3-cyborg

    Most apt upgrades restart their service automatically. needrestart lists anything else.

Are YOU affected by USN-8413-1?

5-second check on your actual server. Reads /etc/os-release, uname -r, and dpkg-query; matches against the live USN + Debian Security Tracker feeds; tells you whether USN-8413-1 (and any other live CVE) applies. Anonymous, no signup.

curl https://mindsparkstack.com/scan.sh | bash
Form-based quickscan Read the bash source first
Want this automated for your servers?

StackPatch runs this match against YOUR installed packages every hour

Free 1-server / $99 lifetime founder seat (50 only) / $19+/mo monthly. Indie pricing.

Buy lifetime →See StackPatch →Live audit log →