Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7179-1: Linux kernel vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2020-24490 , CVE-2024-40910 , CVE-2024-35965 , and 11 others

USN-7173-2: Linux kernel vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-38597 , CVE-2023-52821 , CVE-2024-40910 , and 13 others

USN-7166-3: Linux kernel (HWE) vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-47672 , CVE-2024-49900 , CVE-2023-52532 , and 164 others

Ubuntu 20.04 LTS

USN-7159-4: Linux kernel (IoT) vulnerabilities ›

20 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2023-52497 , CVE-2024-38538 , CVE-2024-26947 , and 20 others

Ubuntu 20.04 LTS

USN-7178-1: DPDK vulnerability ›

19 December 2024

DPDK could be made to crash if it received specially crafted network traffic.

LSN-0108-1: Kernel Live Patch Security Notice ›

19 December 2024

Several security issues were fixed in the kernel.

CVE-2024-26960 , CVE-2024-26800 , CVE-2024-27398 , and 4 others

USN-7177-1: YARA vulnerability ›

18 December 2024

YARA could be made to crash if it received specially crafted input.

Ubuntu 22.04 LTS

USN-7169-2: Linux kernel (GCP) vulnerabilities ›

18 December 2024

Several security issues were fixed in the Linux kernel.

CVE-2024-49967 , CVE-2024-53057 , CVE-2024-50264

Ubuntu 24.10

USN-7172-1: libvpx vulnerability ›

18 December 2024

libvpx could be made to crash or run programs if it received specially crafted input.

Ubuntu 14.04 ESM

USN-7176-1: GStreamer Good Plugins vulnerabilities ›

18 December 2024

GStreamer Good Plugins could be made to crash or run programs as your login if it opened a specially crafted file.

CVE-2024-47537 , CVE-2024-47776 , CVE-2024-47834 , and 19 others

Subscribe

1
2
3
4
5

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading