Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

661 - 670 of 2300 results

USN-4792-1: FreeIPA vulnerabilities

15 March 2021

Several security issues were fixed in FreeIPA.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2016-7030, CVE-2016-5404, CVE-2016-9575

USN-4790-1: libtorrent vulnerability

15 March 2021

libtorrent could be made to crash if it received specially crafted input.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2016-5301

USN-4789-1: Apache ZooKeeper vulnerabilities

15 March 2021

Several security issues were fixed in Apache ZooKeeper.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2017-5637, CVE-2016-5017, CVE-2018-8012

USN-4787-1: jq vulnerability

15 March 2021

jq could be made to crash if it received specially crafted input.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2016-4074

USN-4783-1: minimatch vulnerability

15 March 2021

minimatch could be made to crash if it received specially crafted input.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2016-10540

USN-4779-1: Gettext vulnerability

15 March 2021

Gettext could be made to crash or run programs if it received specially crafted input.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2015-8980

USN-4778-1: OCaml vulnerabilities

15 March 2021

Several security issues were fixed in ocaml.

  • Ubuntu 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2015-8869, CVE-2018-9838

USN-4777-1: node-tar vulnerability

15 March 2021

node-tar could be made to write arbitrary files to the filesystem if it opened a specially crafted tar archive.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2015-8860

USN-4776-1: semver vulnerability

15 March 2021

semver could be made to crash if it received specially crafted input.

  • Ubuntu 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2015-8855

USN-4775-1: Lighttpd vulnerabilities

15 March 2021

Lighttpd could be made to expose sensitive information over the network.

  • Ubuntu 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2015-3200, CVE-2018-19052

  1. Previous page
  2. 65
  3. 66
  4. 67
  5. 68
  6. 69
  7. Next page

Resources

Join the discussion

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›