Skip to main content

Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Your preferences have been successfully updated. Close notification

An error occurred while submitting your form. Please try again or file a bug report. Close

Canonical Ubuntu

Menu

Products
Use cases
Support
Community
Download Ubuntu
Sign in

Canonical

Get to know Canonical, the company behind the products.
Ubuntu

The world's favourite Linux OS for servers, desktops and IoT.
Ubuntu Pro

One subscription for security maintenance, support, FIPS and other compliance certifications.
Snapcraft

The app store for Linux: secure packages and ultra-reliable updates.
LXD

A pure-container hypervisor. Run system containers and VMs at scale.
MAAS

Build a bare metal cloud with super fast server provisioning.
OpenStack

Upgrades, maintenance, support, and fully managed options for long-term, low-cost infra.
Ceph

Software-defined storage that lowers your total cost of ownership.
Kubernetes

App portability for K8s on VMware, Amazon, Azure, Google, Oracle, IBM and bare metal.
Juju

Deploy, integrate and manage applications at any scale, on any infrastructure.

Also from Canonical

Anbox Cloud

Stream Android applications to any device.

Launchpad

The software collaboration platform behind Ubuntu.

Ubuntu on public clouds

Optimised Ubuntu for public clouds.

Multipass

Spin up Ubuntu VMs on Windows, Mac and Linux.

Cloud-init

Control and customise your cloud instances.

Landscape

Systems management and security patching for Ubuntu.

Netplan

Simplify and standardise complex network configuration.

Charmed Kubeflow

AI and MLOps at any scale, on any cloud.

MicroCloud

Deploy a fully functional cloud in minutes.

About

Canonical
Press centre
Careers
Blog
Documentation
Resources
Partners
Contact us

Platform Security
ESM
Livepatch
Security standards
CVEs
Notices
Assurances

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Search

Filter by Ubuntu release

Filter by Ubuntu releases

All maintained releases 24.04 LTS noble 22.04 LTS jammy

Still maintained with Ubuntu Pro

20.04 LTS focal 18.04 LTS bionic 16.04 LTS xenial 14.04 LTS trusty

Show unmaintained releases

Unmaintained

23.10 mantic 23.04 lunar 22.10 kinetic 21.10 impish 21.04 hirsute 20.10 groovy 19.10 eoan 19.04 disco 18.10 cosmic 17.10 artful 17.04 zesty 16.10 yakkety 15.10 wily 15.04 vivid 14.10 utopic 13.10 saucy 13.04 raring 12.10 quantal 12.04 precise 11.10 oneiric 11.04 natty 10.10 maverick 10.04 lucid 9.10 karmic 9.04 jaunty 8.10 intrepid 8.04 hardy 7.10 gutsy 7.04 feisty 6.10 edgy 6.06 dapper 5.10 breezy 5.04 hoary 4.10 warty

61 - 70 of 235 results

USN-4172-1: file vulnerability

30 October 2019

file could be made to crash or run programs if it opened a specially crafted file.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

USN-4171-1: Apport vulnerabilities

30 October 2019

Several security issues were fixed in Apport.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

CVE-2019-11481, CVE-2019-11482, CVE-2019-11483 + 2 others

USN-4170-1: Whoopsie vulnerability

30 October 2019

Whoopsie could be made to crash, expose sensitive information or run programs if it processed a specially crafted crash report.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

USN-4169-1: libarchive vulnerability

29 October 2019

libarchive could be made to execute arbitrary code if it received specially crafted archive file.

Ubuntu 19.04 ,
18.04 LTS,
16.04 LTS,
14.04 LTS

CVE ID

USN-4168-1: Libidn2 vulnerabilities

29 October 2019

Several security issues were fixed in Libidn2.

Ubuntu 19.04 ,
18.04 LTS

CVE ID

CVE-2019-12290, CVE-2019-18224

USN-4167-1: Samba vulnerabilities

29 October 2019

Several security issues were fixed in Samba.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

CVE-2019-10218, CVE-2019-14833, CVE-2019-14847

USN-4166-1: PHP vulnerability

28 October 2019

PHP could be made to run programs if it received specially crafted network traffic.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

USN-4165-1: Firefox vulnerabilities

23 October 2019

Firefox could be made to crash or run programs as your login if it opened a malicious website.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

CVE-2018-6156, CVE-2019-11757, CVE-2019-11759 + 10 others

USN-4164-1: Libxslt vulnerabilities

22 October 2019

Several security issues were fixed in Libxslt.

Ubuntu 19.10 ,
19.04 ,
18.04 LTS,
16.04 LTS,
14.04 LTS,
12.04

CVE ID

CVE-2019-13117, CVE-2019-13118, CVE-2019-18197

USN-4160-1: UW IMAP vulnerability

21 October 2019

UW IMAP could be made to execute programs if it received specially crafted input.

Ubuntu 19.04 ,
18.04 LTS,
16.04 LTS

CVE ID

5
6
7
8
9

Resources

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Further reading

How is Livepatch safeguarded against bad actors?
Fixes available for local privilege escalation vulnerability in libblockdev using udisks
Apache Spark security: start with a solid foundation

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

OpenStack OpenStack

What is OpenStack
Features
Managed
Consulting
Install
Support

Ceph Ceph

What is Ceph
Managed
Consulting
Docs
Install

Kubernetes Kubernetes

What is Kubernetes
Managed
Install
Docs
Resources

Managed Services Managed Services

OpenStack
Kubernetes
Ceph
Apps
Firefighting

AI / ML AI / ML

MLOps
Kubeflow
MLflow
Consulting
Data Science
MLOps workshop

Robotics Robotics

ROS ESM
What is ROS
Community
Docs

IoT IoT

App store
Embedded Linux
Management

Ubuntu Core Ubuntu Core

Features
Success stories
Services
Docs

Ubuntu Desktop Ubuntu Desktop

Organizations
Developers
Flavors
WSL

Ubuntu Server Ubuntu Server

Hyperscale
Docs

Cloud Cloud

What is cloud computing
What is private cloud
What is hybrid cloud
What is multi-cloud
Public cloud

Security Security

Platform Security
ESM
Livepatch
Security standards
CVEs
Notices
Assurances

Landscape Landscape

Features
Managed
Compare
Install
Docs
Log in to Landscape

Containers Containers

What are containers
Chiseled Ubuntu
Chiseled and .NET
Container Build Service

Downloads Downloads

Desktop
Server
Core
Cloud

Support Support

Your subscriptions
Account users
Pricing
Discourse

Pricing Pricing

Desktops
Devices

AI
Data
Infrastructure
Managed IT services
Open source security
IoT and devices
Cloud native development

Sectors

Automotive
Industrial
Government
Telco
Finance

Contact us

About us
Community
Careers
Blog
Resources
Press centre

© 2025 Canonical Ltd.

Ubuntu and Canonical are registered trademarks of Canonical Ltd.

Legal information
Data privacy
Manage your tracker settings
Report a bug on this site

Go to the top of the page