Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

1 - 10 of 10165 results

USN-7964-1: Git vulnerabilities

15 January 2026

Several security issues were fixed in Git.

  • Ubuntu 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2024-52006, CVE-2024-50349

USN-7965-1: SimGear vulnerability

15 January 2026

SimGear could be made to run programs as an administrator if it opened a specially crafted file.

  • Ubuntu 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2025-0781

USN-7916-2: python-apt regression

15 January 2026

USN-7916-1 introduced a regression in python-apt

  • Ubuntu 20.04 LTS

CVE ID

CVE-2025-6966

USN-7963-1: libpng vulnerabilities

14 January 2026

Several security issues were fixed in libpng.

  • Ubuntu 25.10 ,
  • 25.04 ,
  • 24.04 LTS,
  • 22.04 LTS

CVE ID

CVE-2025-66293, CVE-2026-22695, CVE-2026-22801

USN-7962-1: cpp-httplib vulnerability

14 January 2026

cpp-httplib could allow unintended access to network services if it received specially crafted network traffic.

  • Ubuntu 25.10 ,
  • 25.04 ,
  • 24.04 LTS,
  • 22.04 LTS

CVE ID

CVE-2025-66570

USN-7961-1: Erlang vulnerability

14 January 2026

Erlang could allow unintended access to network services.

  • Ubuntu 24.04 LTS

CVE ID

CVE-2024-53846

USN-7960-1: Rack vulnerabilities

14 January 2026

Several security issues were fixed in Rack.

  • Ubuntu 25.10 ,
  • 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2025-61771, CVE-2025-59830, CVE-2025-61772 + 3 others

USN-7959-1: klibc vulnerabilities

14 January 2026

klibc could be made to crash if it received specially crafted input.

  • Ubuntu 25.10 ,
  • 25.04 ,
  • 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS,
  • 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2016-9843

USN-7958-1: AngularJS vulnerabilities

14 January 2026

Several security issues were fixed in AngularJS.

  • Ubuntu 25.04 ,
  • 24.04 LTS,
  • 22.04 LTS,
  • 20.04 LTS,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2024-8372, CVE-2022-25844, CVE-2024-21490 + 7 others

USN-7927-3: urllib3 regression

13 January 2026

USN-7927-1 introduced a regression in urllib3

  • Ubuntu 25.10 ,
  • 25.04 ,
  • 24.04 LTS

CVE ID

CVE-2025-66471

  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page

Resources

Join the discussion

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›