Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7182-1: Ceph vulnerability ›

6 January 2025

Ceph could allow unintended access to network services.

USN-7181-1: Salt vulnerability ›

6 January 2025

Salt could be made to crash or run programs if it received specially crafted network traffic.

Ubuntu 14.04 ESM

USN-7180-1: Python vulnerabilities ›

6 January 2025

Several security issues were fixed in Python 2.7.

CVE-2022-48560 , CVE-2023-24329 , CVE-2022-48566 , and 2 others

USN-7140-2: Tinyproxy vulnerability ›

6 January 2025

tinyproxy could be made to expose sensitive information.

Ubuntu 14.04 ESM

USN-7179-1: Linux kernel vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2020-24490 , CVE-2024-40910 , CVE-2024-35965 , and 11 others

USN-7173-2: Linux kernel vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-38597 , CVE-2023-52821 , CVE-2024-40910 , and 13 others

USN-7166-3: Linux kernel (HWE) vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-47672 , CVE-2024-49900 , CVE-2023-52532 , and 164 others

Ubuntu 20.04 LTS

USN-7159-4: Linux kernel (IoT) vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2023-52497 , CVE-2024-38538 , CVE-2024-26947 , and 20 others

Ubuntu 20.04 LTS

USN-7178-1: DPDK vulnerability ›

19 December 2024

DPDK could be made to crash if it received specially crafted network traffic.

LSN-0108-1: Kernel Live Patch Security Notice ›

19 December 2024

Several security issues were fixed in the kernel.

CVE-2024-26960 , CVE-2024-26800 , CVE-2024-27398 , and 4 others

Subscribe

1
2
3
4
5

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading