CVE reports
The Common Vulnerabilities and Exposures (CVE) system is used to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. Canonical keeps track of all CVEs affecting Ubuntu, and releases a security notice when an issue is fixed.
Canonical also produces Open Vulnerability and Assessment Language (OVAL) data, which is machine-readable, to enable auditing for CVEs and to determine whether a particular patch, via an Ubuntu Security Notice (USN), is appropriate for the local system.
Search
Recent CVEs affecting Ubuntu
ID | Priority | Package |
14.04 ESM
|
16.04 ESM
|
18.04 ESM
|
20.04 LTS
|
22.04 LTS
|
23.10
|
24.04 LTS
|
---|---|---|---|---|---|---|---|---|---|
CVE-2023-50007 |
medium
|
ffmpeg | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
libav |
Needs triage
|
— | — |
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
CVE-2023-49502 |
medium
|
ffmpeg | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
libav |
Needs triage
|
— | — |
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
CVE-2023-49501 |
medium
|
ffmpeg | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
libav |
Needs triage
|
— | — |
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
CVE-2024-32650 |
medium
|
rust-rustls | — | — | — |
Does not exist
|
Does not exist
|
Needs triage
|
— |
rust-rustls-0.20 | — | — | — |
Does not exist
|
Does not exist
|
Needs triage
|
— | ||
CVE-2024-22640 |
medium
|
tcpdf |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2024-32473 |
medium
|
docker.io | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
docker.io-app | — | — | — |
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
CVE-2024-20380 |
medium
|
clamav |
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |
CVE-2023-3758 |
medium
|
sssd | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2024-32462 |
medium
|
flatpak | — | — |
Needed
|
Needed
|
Needed
|
Needed
|
— |
CVE-2024-27306 |
medium
|
python-aiohttp | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2024-26921 |
medium
|
linux |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
linux-hwe | — |
Needs triage
|
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-hwe-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-hwe-5.8 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-hwe-5.11 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-hwe-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-hwe-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-hwe-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-hwe-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-hwe-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-hwe-edge | — |
Ignored
|
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-lts-xenial |
Needs triage
|
— | — |
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-kvm | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Does not exist
|
— | ||
linux-allwinner-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-aws |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
linux-aws-5.0 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.3 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.8 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.11 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-aws-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-aws-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-aws-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-aws-hwe | — |
Needs triage
|
— |
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-azure |
Needs triage
|
Needs triage
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
linux-azure-4.15 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.3 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.8 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.11 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-azure-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-azure-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-azure-fde | — | — | — |
Ignored
|
Needs triage
|
Does not exist
|
— | ||
linux-azure-fde-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-fde-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-azure-fde-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-bluefield | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-azure-edge | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-fips | — | — | — |
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp | — |
Needs triage
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
linux-gcp-4.15 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.3 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.8 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.11 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-gcp-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-gcp-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-gcp-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-gke | — | — | — |
Ignored
|
Needs triage
|
Does not exist
|
— | ||
linux-gke-4.15 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gke-5.4 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gke-5.15 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-gkeop | — | — | — |
Needs triage
|
Needs triage
|
Does not exist
|
— | ||
linux-gkeop-5.4 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-gkeop-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-ibm | — | — | — |
Needs triage
|
Needs triage
|
Ignored
|
— | ||
linux-ibm-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-ibm-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-intel-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-intel-iotg | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-intel-iotg-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-iot | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-laptop | — | — | — |
Does not exist
|
Does not exist
|
Needs triage
|
— | ||
linux-lowlatency | — | — | — |
Does not exist
|
Needs triage
|
Needs triage
|
— | ||
linux-lowlatency-hwe-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-lowlatency-hwe-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-lowlatency-hwe-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-lowlatency-hwe-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-nvidia | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-nvidia-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-nvidia-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-oracle | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
linux-oracle-5.0 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-5.3 | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-5.8 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-5.11 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-oracle-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-oem | — | — |
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-oem-5.6 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oem-5.10 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oem-5.13 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oem-5.14 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-oem-5.17 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-oem-6.0 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-oem-6.1 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-oem-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-raspi | — | — | — |
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
linux-raspi2 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-raspi-5.4 | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
linux-riscv | — | — | — |
Ignored
|
Ignored
|
Needs triage
|
— | ||
linux-riscv-5.8 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-riscv-5.11 | — | — | — |
Ignored
|
Does not exist
|
Does not exist
|
— | ||
linux-riscv-5.15 | — | — | — |
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
linux-riscv-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-riscv-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-starfive | — | — | — |
Does not exist
|
Does not exist
|
Needs triage
|
— | ||
linux-starfive-5.19 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-starfive-6.2 | — | — | — |
Does not exist
|
Ignored
|
Does not exist
|
— | ||
linux-starfive-6.5 | — | — | — |
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
linux-xilinx-zynqmp | — | — | — |
Needs triage
|
Needs triage
|
Does not exist
|
— | ||
CVE-2023-4235 |
medium
|
ofono | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-4234 |
medium
|
ofono | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-4233 |
medium
|
ofono | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-4232 |
medium
|
ofono | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2024-3817 |
medium
|
golang-github-hashicorp-go-getter | — | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
golang-github-jesseduffield-go-getter | — | — | — |
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
CVE-2024-3900 |
medium
|
poppler | — |
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
— |
CVE-2024-31585 |
medium
|
ffmpeg | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2024-31583 |
medium
|
pytorch | — | — | — |
Does not exist
|
Needs triage
|
Needs triage
|
— |
CVE-2024-31582 |
medium
|
ffmpeg | — |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |