CVE reports

The Common Vulnerabilities and Exposures (CVE) system is used to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. Canonical keeps track of all CVEs affecting Ubuntu, and releases a security notice when an issue is fixed.

Canonical also produces Open Vulnerability and Assessment Language (OVAL) data, which is machine-readable, to enable auditing for CVEs and to determine whether a particular patch, via an Ubuntu Security Notice (USN), is appropriate for the local system.

Search

CVE ID or description contains:

Package:

Priority:

Ubuntu version

Status

Recent CVEs affecting Ubuntu

ID	Priority	Package	14.04 ESM	16.04 ESM	18.04 LTS	20.04 LTS	22.04 LTS	22.10
CVE-2022-40313	medium	moodle	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
CVE-2022-3287	medium	fwupd	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2022-3266	medium	firefox	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
		mozjs38	Does not exist	Does not exist	Needs triage	Does not exist	Does not exist	—
		mozjs52	Does not exist	Does not exist	Needs triage	Needs triage	Does not exist	—
		mozjs68	Does not exist	Does not exist	Does not exist	Needs triage	Does not exist	—
		mozjs78	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	—
		mozjs91	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	—
		thunderbird	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2022-3219	low	gnupg	Deferred	Deferred	Does not exist	Does not exist	Does not exist	—
CVE-2022-3219	low	gnupg2	Ignored	Deferred	Deferred	Deferred	Deferred	—
CVE-2022-39835	medium	gajim	Ignored	Ignored	Needs triage	Needs triage	Needs triage	—
CVE-2022-3324	medium	vim	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2022-3303	medium	linux-gkeop	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
		linux-gkeop-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-oem	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		due	Ignored	Ignored	Does not exist	Does not exist	Needs triage	—
		linux	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
		linux-aws	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
		linux-aws-5.0	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-aws-5.11	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-aws-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-aws-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-aws-5.3	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-aws-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-aws-5.8	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-aws-hwe	Ignored	Needs triage	Does not exist	Does not exist	Does not exist	—
		linux-azure	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
		linux-azure-4.15	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-azure-5.11	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-azure-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-azure-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-azure-5.3	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-azure-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-azure-5.8	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-azure-edge	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-azure-fde	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
		linux-bluefield	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-dell300x	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-fips	Ignored	Ignored	Does not exist	Does not exist	Does not exist	—
		linux-gcp	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
		linux-gcp-4.15	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-gcp-5.11	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-gcp-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-gcp-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-gcp-5.3	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-gcp-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-gcp-5.8	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-gke	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
		linux-gke-4.15	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-gke-5.0	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-gke-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-gke-5.3	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-gke-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-hwe	Ignored	Needs triage	Needs triage	Does not exist	Does not exist	—
		linux-hwe-5.11	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-hwe-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-hwe-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-hwe-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-hwe-5.8	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-hwe-edge	Ignored	Needs triage	Needs triage	Does not exist	Does not exist	—
		linux-ibm	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
		linux-ibm-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-intel-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-intel-iotg	Ignored	Ignored	Does not exist	Does not exist	Needs triage	—
		linux-intel-iotg-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-kvm	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
		linux-lowlatency	Ignored	Ignored	Does not exist	Does not exist	Needs triage	—
		linux-lowlatency-hwe-5.15	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-lts-xenial	Needs triage	Ignored	Does not exist	Does not exist	Does not exist	—
		linux-oem-5.10	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-oem-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-oem-5.14	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-oem-5.17	Ignored	Ignored	Does not exist	Does not exist	Needs triage	—
		linux-oem-5.6	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		linux-oem-osp1	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
		linux-oracle	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
linux-oracle-5.0	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
linux-oracle-5.11	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
linux-oracle-5.13	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
linux-oracle-5.3	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
linux-oracle-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
linux-oracle-5.8	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
linux-raspi	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
linux-raspi-5.4	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
linux-raspi2	Ignored	Ignored	Needs triage	Needs triage	Does not exist	—
linux-raspi2-5.3	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
linux-riscv	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
linux-riscv-5.11	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
linux-riscv-5.8	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
linux-snapdragon	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
CVE-2022-41556	medium	lighttpd	Needs triage	Ignored	Needs triage	Needs triage	Needs triage	—
CVE-2022-35256	medium	nodejs	Needs triage	Ignored	Needs triage	Needs triage	Needs triage	—
CVE-2022-35255	medium	nodejs	Needs triage	Ignored	Needs triage	Needs triage	Needs triage	—
CVE-2022-3277	medium	neutron	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2022-3165	medium	qemu	Not vulnerable	Not vulnerable	Not vulnerable	Not vulnerable	Needs triage	—
CVE-2022-3201	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3200	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3199	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3198	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3197	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3196	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3195	medium	chromium-browser	Ignored	Ignored	Needed	Not vulnerable	Not vulnerable	—
CVE-2022-3075	medium	chromium-browser	Ignored	Ignored	Released	Not vulnerable	Not vulnerable	—

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE reports

Search

Recent CVEs affecting Ubuntu

Join the discussion

Canonical is offering Extended Security Maintenance

Further reading