Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
221 - 230 of 2594 results
27 January 2025
Quagga could be made to crash if it received specially crafted network traffic.
- Ubuntu 18.04 LTS
CVE ID
23 January 2025
PCL could be made to crash if it received specially crafted input.
- Ubuntu 24.10 ,
- 24.04 LTS,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS,
- 16.04 LTS
CVE ID
23 January 2025
Cacti could be made to crash or run programs if it received specially crafted network traffic.
- Ubuntu 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS
CVE ID
23 January 2025
Django could be made to cause a denial of service if it received a specially crafted IPv6 string.
- Ubuntu 18.04 LTS
CVE ID
22 January 2025
Several security issues were fixed in htmldoc.
- Ubuntu 24.10 ,
- 24.04 LTS,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS,
- 16.04 LTS,
- 14.04 LTS
CVE ID
CVE-2022-0534, CVE-2022-24191, CVE-2022-27114 + 6 others
22 January 2025
Several security issues were fixed in Cyrus IMAP Server.
- Ubuntu 24.04 LTS,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS
CVE ID
22 January 2025
OpenJPEG could be made to crash or run programs if it opened a specially crafted file.
- Ubuntu 24.10 ,
- 24.04 LTS,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS,
- 16.04 LTS
CVE ID
20 January 2025
Several security issues were fixed in PoDoFo.
- Ubuntu 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS,
- 16.04 LTS,
- 14.04 LTS
CVE ID
CVE-2018-11255, CVE-2020-18971, CVE-2018-20797 + 7 others
16 January 2025
USN-7206-1 caused some regression in rsync.
- Ubuntu 24.04 LTS,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS,
- 16.04 LTS,
- 14.04 LTS
16 January 2025
poppler could be made to crash or expose sensitive information if it opened a specially crafted file.
- Ubuntu 24.10 ,
- 24.04 LTS,
- 22.04 LTS,
- 20.04 LTS,
- 18.04 LTS,
- 16.04 LTS
CVE ID
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.