Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7038-2: APR vulnerability ›

16 October 2024

The system could be made to expose sensitive information.

Ubuntu 14.04 ESM

USN-7069-1: Linux kernel vulnerabilities ›

15 October 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-38602 , CVE-2024-38621 , CVE-2024-42223 , and 32 others

USN-7064-1: nano vulnerability ›

15 October 2024

nano could be made to give users administrator privileges.

USN-7068-1: ImageMagick vulnerabilities ›

15 October 2024

Several security issues were fixed in ImageMagick.

CVE-2019-7398 , CVE-2020-27767 , CVE-2020-27770 , and 30 others

USN-7040-2: ConfigObj vulnerability ›

14 October 2024

ConfigObj could be made to crash if it received specially crafted input.

Ubuntu 14.04 ESM

USN-7014-3: nginx vulnerability ›

14 October 2024

nginx could be made to crash if it received specially crafted network traffic.

Ubuntu 14.04 ESM

USN-6968-3: PostgreSQL vulnerability ›

14 October 2024

PostgreSQL could execute arbitrary SQL functions as the superuser if it received a specially crafted SQL object.

USN-7015-4: Python vulnerability ›

14 October 2024

Python could me made to bypass some restrictions if it received specially crafted input.

Ubuntu 14.04 ESM

USN-7067-1: HAProxy vulnerability ›

14 October 2024

HAProxy could be made to crash if it received specially crafted network traffic.

Ubuntu 18.04 ESM

USN-7066-1: Thunderbird vulnerability ›

14 October 2024

Thunderbird could be made to crash or run programs if it opened a specially crafted file.

Subscribe

2
3
4
5
6

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading