Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7414-1: XZ Utils vulnerability ›

3 April 2025

XZ Utils could be made to crash or run programs if it opened a specially crafted file.

USN-7413-1: Linux kernel (IoT) vulnerabilities ›

3 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-50006 , CVE-2024-50040 , CVE-2024-36952 , and 313 others

Ubuntu 20.04 LTS

USN-7406-4: Linux kernel (Azure FIPS) vulnerabilities ›

3 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-26928 , CVE-2024-56658 , CVE-2024-57798 , and 1 other

Ubuntu 22.04 LTS

USN-7412-1: GnuPG vulnerability ›

3 April 2025

GnuPG could be made to corrupt a keyring.

USN-7411-1: OpenVPN vulnerability ›

3 April 2025

OpenVPN could be made to crash if it received specially crafted network traffic.

USN-7409-1: RubySAML vulnerabilities ›

2 April 2025

Several security issues were fixed in ruby-saml.

CVE-2025-25292 , CVE-2025-25291 , CVE-2025-25293

USN-7408-2: Linux kernel (FIPS) vulnerabilities ›

2 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-26928 , CVE-2024-56658 , CVE-2024-35864

Ubuntu 20.04 LTS

USN-7408-1: Linux kernel vulnerabilities ›

2 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-56658 , CVE-2024-35864 , CVE-2024-26928

USN-7406-3: Linux kernel (Real-time) vulnerabilities ›

2 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-26928 , CVE-2024-56658 , CVE-2024-57798 , and 1 other

Ubuntu 22.04 LTS

USN-7406-2: Linux kernel (FIPS) vulnerabilities ›

2 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-26928 , CVE-2024-56658 , CVE-2024-57798 , and 1 other

Ubuntu 22.04 LTS

Subscribe

1
2
3
4
5

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading