Skip to main content

Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Your preferences have been successfully updated. Close notification

An error occurred while submitting your form. Please try again or file a bug report. Close

Canonical Ubuntu

Menu

Products
Use cases
Support
Community
Download Ubuntu
Sign in

Canonical

Get to know Canonical, the company behind the products.
Ubuntu

The world's favourite Linux OS for servers, desktops and IoT.
Ubuntu Pro

One subscription for security maintenance, support, FIPS and other compliance certifications.
Snapcraft

The app store for Linux: secure packages and ultra-reliable updates.
LXD

A pure-container hypervisor. Run system containers and VMs at scale.
MAAS

Build a bare metal cloud with super fast server provisioning.
OpenStack

Upgrades, maintenance, support, and fully managed options for long-term, low-cost infra.
Ceph

Software-defined storage that lowers your total cost of ownership.
Kubernetes

App portability for K8s on VMware, Amazon, Azure, Google, Oracle, IBM and bare metal.
Juju

Deploy, integrate and manage applications at any scale, on any infrastructure.

Also from Canonical

Anbox Cloud

Stream Android applications to any device.

Launchpad

The software collaboration platform behind Ubuntu.

Ubuntu on public clouds

Optimised Ubuntu for public clouds.

Multipass

Spin up Ubuntu VMs on Windows, Mac and Linux.

Cloud-init

Control and customise your cloud instances.

Landscape

Systems management and security patching for Ubuntu.

Netplan

Simplify and standardise complex network configuration.

Charmed Kubeflow

AI and MLOps at any scale, on any cloud.

MicroCloud

Deploy a fully functional cloud in minutes.

About

Canonical
Press centre
Careers
Blog
Documentation
Resources
Partners
Contact us

Platform Security
ESM
Livepatch
Security standards
CVEs
Notices
Assurances

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Search

Filter by Ubuntu release

Filter by Ubuntu releases

All maintained releases 24.04 LTS noble 22.04 LTS jammy

Still maintained with Ubuntu Pro

20.04 LTS focal 18.04 LTS bionic 16.04 LTS xenial 14.04 LTS trusty

Show unmaintained releases

Unmaintained

23.10 mantic 23.04 lunar 22.10 kinetic 21.10 impish 21.04 hirsute 20.10 groovy 19.10 eoan 19.04 disco 18.10 cosmic 17.10 artful 17.04 zesty 16.10 yakkety 15.10 wily 15.04 vivid 14.10 utopic 13.10 saucy 13.04 raring 12.10 quantal 12.04 precise 11.10 oneiric 11.04 natty 10.10 maverick 10.04 lucid 9.10 karmic 9.04 jaunty 8.10 intrepid 8.04 hardy 7.10 gutsy 7.04 feisty 6.10 edgy 6.06 dapper 5.10 breezy 5.04 hoary 4.10 warty

121 - 130 of 2053 results

USN-7000-1: Expat vulnerabilities

12 September 2024

Several security issues were fixed in Expat.

Ubuntu 24.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS,
14.04 LTS

CVE ID

CVE-2024-45492, CVE-2024-45491, CVE-2024-45490

USN-7003-1: Linux kernel vulnerabilities

12 September 2024

Several security issues were fixed in the Linux kernel.

Ubuntu 20.04 LTS

CVE ID

CVE-2024-39501, CVE-2024-40945, CVE-2024-42119 + 82 others

USN-6998-1: Unbound vulnerabilities

11 September 2024

Several security issues were fixed in Unbound.

Ubuntu 24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS,
14.04 LTS

CVE ID

CVE-2024-43167, CVE-2024-43168

USN-6997-1: LibTIFF vulnerability

9 September 2024

LibTIFF could be made to crash if it received specially crafted input.

Ubuntu 24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS

CVE ID

USN-6995-1: Thunderbird vulnerabilities

9 September 2024

Several security issues were fixed in Thunderbird.

Ubuntu 22.04 LTS,
20.04 LTS

CVE ID

CVE-2024-7526, CVE-2024-7521, CVE-2024-7519 + 7 others

USN-6991-1: AIOHTTP vulnerability

5 September 2024

python-aiohttp would allow unintended access to files over the network.

Ubuntu 24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS

CVE ID

USN-6993-1: Vim vulnerabilities

5 September 2024

Several security issues were fixed in Vim.

Ubuntu 24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS,
14.04 LTS

CVE ID

CVE-2024-41957, CVE-2024-43374

USN-6992-1: Firefox vulnerabilities

5 September 2024

Several security issues were fixed in Firefox.

Ubuntu 20.04 LTS

CVE ID

CVE-2024-8385, CVE-2024-8387, CVE-2024-8383 + 5 others

USN-6990-1: znc vulnerability

4 September 2024

znc could be made to execute arbitrary code on a user’s system if they were persuaded to join a malicious server.

Ubuntu 24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS,
14.04 LTS

CVE ID

USN-6988-1: Twisted vulnerabilities

4 September 2024

Several security issues were fixed in Twisted.

Ubuntu 24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS,
14.04 LTS

CVE ID

CVE-2024-41810, CVE-2024-41671

11
12
13
14
15

Resources

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Further reading

Fixes available for local privilege escalation vulnerability in libblockdev using udisks
Apache Spark security: start with a solid foundation
What if your container images were security-maintained at the source?

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

OpenStack OpenStack

What is OpenStack
Features
Managed
Consulting
Install
Support

Ceph Ceph

What is Ceph
Managed
Consulting
Docs
Install

Kubernetes Kubernetes

What is Kubernetes
Managed
Install
Docs
Resources

Managed Services Managed Services

OpenStack
Kubernetes
Ceph
Apps
Firefighting

AI / ML AI / ML

MLOps
Kubeflow
MLflow
Consulting
Data Science
MLOps workshop

Robotics Robotics

ROS ESM
What is ROS
Community
Docs

IoT IoT

App store
Embedded Linux
Management

Ubuntu Core Ubuntu Core

Features
Success stories
Services
Docs

Ubuntu Desktop Ubuntu Desktop

Organizations
Developers
Flavors
WSL

Ubuntu Server Ubuntu Server

Hyperscale
Docs

Cloud Cloud

What is cloud computing
What is private cloud
What is hybrid cloud
What is multi-cloud
Public cloud

Security Security

Platform Security
ESM
Livepatch
Security standards
CVEs
Notices
Assurances

Landscape Landscape

Features
Managed
Compare
Install
Docs
Log in to Landscape

Containers Containers

What are containers
Chiseled Ubuntu
Chiseled and .NET
Container Build Service

Downloads Downloads

Desktop
Server
Core
Cloud

Support Support

Your subscriptions
Account users
Pricing
Discourse

Pricing Pricing

Desktops
Devices

AI
Data
Infrastructure
Managed IT services
Open source security
IoT and devices
Cloud native development

Sectors

Automotive
Industrial
Government
Telco
Finance

Contact us

About us
Community
Careers
Blog
Resources
Press centre

© 2025 Canonical Ltd.

Ubuntu and Canonical are registered trademarks of Canonical Ltd.

Legal information
Data privacy
Manage your tracker settings
Report a bug on this site

Go to the top of the page