Skip to main content

Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Your preferences have been successfully updated. Close notification

An error occurred while submitting your form. Please try again or file a bug report. Close

Canonical Ubuntu

Menu

Products
Use cases
Support
Community
Download Ubuntu
Sign in

Canonical

Get to know Canonical, the company behind the products.
Ubuntu

The world's favourite Linux OS for servers, desktops and IoT.
Ubuntu Pro

One subscription for security maintenance, support, FIPS and other compliance certifications.
Snapcraft

The app store for Linux: secure packages and ultra-reliable updates.
LXD

A pure-container hypervisor. Run system containers and VMs at scale.
MAAS

Build a bare metal cloud with super fast server provisioning.
OpenStack

Upgrades, maintenance, support, and fully managed options for long-term, low-cost infra.
Ceph

Software-defined storage that lowers your total cost of ownership.
Kubernetes

App portability for K8s on VMware, Amazon, Azure, Google, Oracle, IBM and bare metal.
Juju

Deploy, integrate and manage applications at any scale, on any infrastructure.

Also from Canonical

Anbox Cloud

Stream Android applications to any device.

Launchpad

The software collaboration platform behind Ubuntu.

Ubuntu on public clouds

Optimised Ubuntu for public clouds.

Multipass

Spin up Ubuntu VMs on Windows, Mac and Linux.

Cloud-init

Control and customise your cloud instances.

Landscape

Systems management and security patching for Ubuntu.

Netplan

Simplify and standardise complex network configuration.

Charmed Kubeflow

AI and MLOps at any scale, on any cloud.

MicroCloud

Deploy a fully functional cloud in minutes.

About

Canonical
Press centre
Careers
Blog
Documentation
Resources
Partners
Contact us

Platform Security
ESM
Livepatch
Security standards
CVEs
Notices
Assurances

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Search

Filter by Ubuntu release

Filter by Ubuntu releases

All maintained releases 24.04 LTS noble 22.04 LTS jammy

Still maintained with Ubuntu Pro

20.04 LTS focal 18.04 LTS bionic 16.04 LTS xenial 14.04 LTS trusty

Show unmaintained releases

Unmaintained

24.10 oracular 23.10 mantic 23.04 lunar 22.10 kinetic 21.10 impish 21.04 hirsute 20.10 groovy 19.10 eoan 19.04 disco 18.10 cosmic 17.10 artful 17.04 zesty 16.10 yakkety 15.10 wily 15.04 vivid 14.10 utopic 13.10 saucy 13.04 raring 12.10 quantal 12.04 precise 11.10 oneiric 11.04 natty 10.10 maverick 10.04 lucid 9.10 karmic 9.04 jaunty 8.10 intrepid 8.04 hardy 7.10 gutsy 7.04 feisty 6.10 edgy 6.06 dapper 5.10 breezy 5.04 hoary 4.10 warty

81 - 90 of 193 results

USN-2553-1: LibTIFF vulnerabilities

31 March 2015

LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file.

Ubuntu 14.10 ,
14.04 LTS,
12.04 ,
10.04

CVE ID

CVE-2014-8127, CVE-2014-8128, CVE-2014-8129 + 3 others

USN-2551-1: Apache Standard Taglibs vulnerability

30 March 2015

Apache Standard Taglibs loaded external XML entities.

Ubuntu 14.10 ,
14.04 LTS

CVE ID

USN-2549-1: libarchive vulnerabilities

25 March 2015

libarchive could be made to crash or overwrite files.

Ubuntu 14.10 ,
14.04 LTS,
12.04

CVE ID

CVE-2013-0211, CVE-2015-2304

USN-2548-1: Batik vulnerability

25 March 2015

Batik could be made to consume resources or expose sensitive information.

Ubuntu 14.10 ,
14.04 LTS,
12.04

CVE ID

USN-2547-1: Mono vulnerabilities

24 March 2015

Several security issues were fixed in Mono.

Ubuntu 14.10 ,
14.04 LTS,
12.04

CVE ID

CVE-2011-0992, CVE-2012-3543, CVE-2015-2318 + 2 others

USN-2546-1: Linux kernel vulnerabilities

24 March 2015

Several security issues were fixed in the kernel.

Ubuntu 14.10

CVE ID

CVE-2013-7421, CVE-2014-9644, CVE-2015-1421 + 1 other

USN-2540-1: GnuTLS vulnerabilities

23 March 2015

Several security issues were fixed in GnuTLS.

Ubuntu 14.10 ,
14.04 LTS,
12.04 ,
10.04

CVE ID

CVE-2014-8155, CVE-2015-0282, CVE-2015-0294

USN-2539-1: Django vulnerabilities

23 March 2015

Several security issues were fixed in Django.

Ubuntu 14.10 ,
14.04 LTS,
12.04 ,
10.04

CVE ID

CVE-2015-2316, CVE-2015-2317

USN-2538-1: Firefox vulnerabilities

22 March 2015

Firefox could be made to crash or run programs as your login if it opened a malicious website.

Ubuntu 14.10 ,
14.04 LTS,
12.04

CVE ID

CVE-2015-0817, CVE-2015-0818

USN-2537-1: OpenSSL vulnerabilities

19 March 2015

Several security issues were fixed in OpenSSL.

Ubuntu 14.10 ,
14.04 LTS,
12.04 ,
10.04

CVE ID

CVE-2015-0209, CVE-2015-0286, CVE-2015-0287 + 4 others

7
8
9
10
11

Resources

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Further reading

Update Livepatch Client for the newest kernel module signing certificate
How is Livepatch safeguarded against bad actors?
Fixes available for local privilege escalation vulnerability in libblockdev using udisks

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

OpenStack OpenStack

What is OpenStack
Features
Managed
Consulting
Install
Support

Ceph Ceph

What is Ceph
Managed
Consulting
Docs
Install

Kubernetes Kubernetes

What is Kubernetes
Managed
Install
Docs
Resources

Managed Services Managed Services

OpenStack
Kubernetes
Ceph
Apps
Firefighting

AI / ML AI / ML

MLOps
Kubeflow
MLflow
Consulting
Data Science
MLOps workshop

Robotics Robotics

ROS ESM
What is ROS
Community
Docs

IoT IoT

App store
Embedded Linux
Management

Ubuntu Core Ubuntu Core

Features
Success stories
Services
Docs

Ubuntu Desktop Ubuntu Desktop

Organizations
Developers
Flavors
WSL

Ubuntu Server Ubuntu Server

Hyperscale
Docs

Cloud Cloud

What is cloud computing
What is private cloud
What is hybrid cloud
What is multi-cloud
Public cloud

Security Security

Platform Security
ESM
Livepatch
Security standards
CVEs
Notices
Assurances

Landscape Landscape

Features
Managed
Compare
Install
Docs
Log in to Landscape

Containers Containers

What are containers
Chiseled Ubuntu
Chiseled and .NET
Container Build Service

Downloads Downloads

Desktop
Server
Core
Cloud

Support Support

Your subscriptions
Account users
Pricing
Discourse

Pricing Pricing

Desktops
Devices

AI
Data
Infrastructure
Managed IT services
Open source security
IoT and devices
Cloud native development

Sectors

Automotive
Industrial
Public sector
Telco
Finance

Contact us

About us
Community
Careers
Blog
Resources
Press centre

© 2025 Canonical Ltd.

Ubuntu and Canonical are registered trademarks of Canonical Ltd.

Legal information
Data privacy
Manage your tracker settings
Report a bug on this site

Go to the top of the page