Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-6964-2: ORC vulnerability ›

1 October 2024

ORC could be made to crash or execute arbitrary code

USN-7015-3: Python vulnerability ›

1 October 2024

Python could be made to bypass some restrictions if it received specially crafted input.

USN-7047-1: Knot Resolver vulnerabilities ›

1 October 2024

Several security issues were fixed in knot-resolver.

CVE-2019-10190 , CVE-2019-10191 , CVE-2020-12667 , and 1 other

Ubuntu 20.04 LTS

USN-7046-1: Flatpak and Bubblewrap vulnerability ›

30 September 2024

Flatpak could be made to read and write files in locations it would not normally have access to.

USN-7045-1: libppd vulnerability ›

26 September 2024

libppd could be made to run programs if it received specially crafted network traffic.

Ubuntu 24.04 LTS

USN-7044-1: libcupsfilters vulnerability ›

26 September 2024

libcupsfilters could be made to run programs if it received specially crafted network traffic.

Ubuntu 24.04 LTS

USN-7043-1: cups-filters vulnerabilities ›

26 September 2024

cups-filters could be made to run programs if it received specially crafted network traffic.

CVE-2024-47176 , CVE-2024-47076

USN-7042-1: cups-browsed vulnerability ›

26 September 2024

cups-browsed could be made to run programs if it received specially crafted network traffic.

Ubuntu 24.04 LTS

USN-7041-1: CUPS vulnerability ›

26 September 2024

CUPS could be made to crash or run programs if it received specially crafted network traffic.

USN-7040-1: ConfigObj vulnerability ›

26 September 2024

ConfigObj could be made to crash if it received specially crafted input.

Subscribe

6
7
8
9
10

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading