Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7065-1: Firefox vulnerability ›

14 October 2024

Firefox could be made to run programs as your login if it opened a malicious website.

Ubuntu 20.04 LTS

USN-7063-1: Ubuntu Advantage Desktop Daemon vulnerability ›

11 October 2024

Ubuntu Advantage Desktop Daemon could be made to expose sensitive information.

USN-7020-4: Linux kernel vulnerabilities ›

11 October 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-42160 , CVE-2024-42154 , CVE-2024-41009 , and 3 others

Ubuntu 22.04 LTS

USN-7061-1: Go vulnerabilities ›

10 October 2024

Several security issues were fixed in Go.

CVE-2023-29405 , CVE-2023-29406 , CVE-2024-24785 , and 8 others

Ubuntu 22.04 LTS

USN-7062-1: libgsf vulnerabilities ›

10 October 2024

libgsf could be made to run programs as your login if it opened a specially crafted file.

CVE-2024-36474 , CVE-2024-42415

USN-7022-3: Linux kernel vulnerabilities ›

10 October 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-42160 , CVE-2024-26787 , CVE-2024-38570 , and 7 others

Ubuntu 18.04 ESM

USN-7060-1: EDK II vulnerabilities ›

10 October 2024

Several security issues were fixed in EDK II.

CVE-2021-38578 , CVE-2021-28210 , CVE-2019-0161 , and 3 others

USN-7059-1: OATH Toolkit vulnerability ›

9 October 2024

oath-toolkit could be made overwrite files as the administrator.

USN-7043-4: cups-filters vulnerabilities ›

9 October 2024

cups-filters could be made to run programs if it received specially crafted network traffic.

CVE-2024-47176 , CVE-2024-47076

USN-7042-2: cups-browsed vulnerability ›

9 October 2024

cups-browsed could be made to run programs if it received specially crafted network traffic.

Ubuntu 24.04 LTS

Subscribe

3
4
5
6
7

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading