Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

1861 - 1870 of 10429 results

USN-6915-1: poppler vulnerability

24 July 2024

poppler could be made to denial of service if it opened a specially crafted PDF.

  • Ubuntu 24.04 LTS,
  • 22.04 LTS

CVE ID

CVE-2024-6239

USN-6914-1: OCS Inventory vulnerability

24 July 2024

OCS Inventory was vulnerable to an authentication bypass if the selected authentication method was via CAS.

  • Ubuntu 22.04 LTS

CVE ID

CVE-2022-39369

USN-6913-1: phpCAS vulnerability

24 July 2024

phpCAS was vulnerable to an authentication bypass.

  • Ubuntu 22.04 LTS,
  • 20.04 LTS

CVE ID

CVE-2022-39369

USN-6912-1: provd vulnerability

24 July 2024

provd could be made to run programs as an administrator.

  • Ubuntu 24.04 LTS

CVE ID

CVE-2024-6714

USN-6906-1: python-zipp vulnerability

24 July 2024

python-zipp could be made to crash if certain zip files are used.

  • Ubuntu 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS

CVE ID

CVE-2024-5569

USN-6910-1: Apache ActiveMQ vulnerabilities

23 July 2024

Several security issues were fixed in Apache ActiveMQ.

  • Ubuntu 22.04 LTS,
  • 20.04 LTS,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2021-26117, CVE-2022-41678, CVE-2023-46604 + 3 others

USN-6530-2: HAProxy vulnerability

23 July 2024

HAProxy could be made to expose sensitive information.

  • Ubuntu 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2023-45539

USN-6911-1: Nova vulnerability

23 July 2024

Nova would allow unintended access to files over the network.

  • Ubuntu 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS

CVE ID

CVE-2024-40767

USN-6907-1: Squid vulnerability

23 July 2024

Squid could be made to crash if it processed specially crafted characters.

  • Ubuntu 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2024-37894

USN-6909-1: Bind vulnerabilities

23 July 2024

Several security issues were fixed in Bind.

  • Ubuntu 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS

CVE ID

CVE-2024-1975, CVE-2024-1737, CVE-2024-0760 + 1 other

  1. Previous page
  2. 185
  3. 186
  4. 187
  5. 188
  6. 189
  7. Next page

Resources

Join the discussion

Further reading

Get up to 15 years of security
maintenance for your new or established systems

Get up to 15 years of security maintenance for your entire Ubuntu Archive. Keep your systems stable with security backporting and avoid forced upgrades.

Find out more about Ubuntu Pro ›
Learn more about ESM and our legacy add-on ›