Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
41 - 50 of 229 results
26 July 2010
Firefox could be made to run programs as your login if it opened a specially crafted file or website.
- Ubuntu 9.10 ,
- 9.04
CVE ID
23 July 2010
Firefox could be made to run programs as your login if it opened a specially crafted file or website.
- Ubuntu 9.10 ,
- 9.04
CVE ID
CVE-2008-5913, CVE-2010-1121, CVE-2010-1125 + 24 others
23 July 2010
This update is for use with the new Xulrunner provided in USN-930-4.
- Ubuntu 9.10 ,
- 9.04
23 July 2010
Thunderbird update
- Ubuntu 9.04
23 July 2010
This update is for use with the new NSS provided in USN-927-6.
- Ubuntu 9.04
23 July 2010
Under certain conditions, an attacker could execute commands in web applications using your authenticated credentials.
- Ubuntu 9.04
CVE ID
20 July 2010
- Ubuntu 10.04 ,
- 9.10 ,
- 9.04 ,
- 8.04 ,
- 6.06
CVE ID
CVE-2010-2498, CVE-2010-2499, CVE-2010-2500 + 3 others
15 July 2010
arbitrary command execution via terminal escape codes
- Ubuntu 10.04 ,
- 9.10 ,
- 9.04
CVE ID
13 July 2010
- Ubuntu 10.04 ,
- 9.10 ,
- 9.04 ,
- 8.04
CVE ID
CVE-2010-1628, CVE-2010-1869, CVE-2009-4270 + 1 other
8 July 2010
- Ubuntu 10.04 ,
- 9.10 ,
- 9.04 ,
- 8.04 ,
- 6.06
CVE ID
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.