Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-6819-4: Linux kernel (Oracle) vulnerabilities ›

26 June 2024

Several security issues were fixed in the Linux kernel.

CVE-2023-52599 , CVE-2023-52453 , CVE-2023-52462 , and 146 others

Ubuntu 22.04 LTS

USN-6853-1: Ruby vulnerability ›

26 June 2024

Ruby could be made to crash or expose sensitive information login if it processed certain strings.

USN-6852-1: Wget vulnerability ›

26 June 2024

Wget could be made to connect to a different host than expected.

USN-6843-1: Plasma Workspace vulnerability ›

26 June 2024

plasma-workspace would allow unintended access to the session manager.

USN-6850-1: OpenVPN vulnerability ›

26 June 2024

OpenVPN could allow unintended access to network services.

USN-6849-1: Salt vulnerabilities ›

25 June 2024

Several security issues were fixed in Salt.

CVE-2020-11652 , CVE-2020-11651

Ubuntu 14.04 ESM

USN-6746-2: Google Guest Agent and Google OS Config Agent vulnerability ›

25 June 2024

Google Guest Agent and OS Config Agent could be made to crash if it open a specially crafted JSON.

Ubuntu 24.04 LTS

USN-6848-1: Roundcube vulnerabilities ›

25 June 2024

Roundcube could be made to crash or run programs if it received specially crafted input.

CVE-2024-37383 , CVE-2024-37384 , CVE-2023-47272 , and 1 other

USN-6847-1: libheif vulnerabilities ›

25 June 2024

libheif could be made to crash if it opened a specially crafted file.

CVE-2023-49463 , CVE-2020-23109 , CVE-2023-49464 , and 5 others

USN-6846-1: Ansible vulnerabilities ›

25 June 2024

Several security issues were fixed in Ansible.

CVE-2023-5764 , CVE-2022-3697

Subscribe

35
36
37
38
39

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading