Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

171 - 180 of 222 results

USN-3861-1: PolicyKit vulnerability

16 January 2019

PolicyKit could allow unintended access.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2018-19788

USN-3860-1: libcaca vulnerabilities

15 January 2019

Several security issues were fixed in libcaca.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2018-20544, CVE-2018-20545, CVE-2018-20546 + 3 others

USN-3859-1: libarchive vulnerabilities

15 January 2019

Several security issues were fixed in libarchive.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2017-14502, CVE-2018-1000877, CVE-2018-1000878 + 1 other

USN-3858-1: HAProxy vulnerabilities

15 January 2019

Several security issues were fixed in HAProxy.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2018-20102, CVE-2018-20103, CVE-2018-20615

USN-3857-1: PEAR vulnerability

14 January 2019

PEAR could be made to run programs if it processed a specially crafted file.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2018-1000888

USN-3855-1: systemd vulnerabilities

11 January 2019

Several security issues were fixed in systemd.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2018-16864, CVE-2018-16865, CVE-2018-16866

USN-3854-1: WebKitGTK+ vulnerabilities

10 January 2019

Several security issues were fixed in WebKitGTK+.

  • Ubuntu 18.10 ,
  • 18.04 LTS

CVE ID

CVE-2018-4437

USN-3853-1: GnuPG vulnerability

10 January 2019

GnuPG could allow unintended access to network services.

  • Ubuntu 18.10 ,
  • 18.04 LTS

CVE ID

CVE-2018-1000858

USN-3852-1: Exiv2 vulnerabilities

10 January 2019

Several security issues were fixed in Exiv2.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2017-11591, CVE-2017-11683, CVE-2017-14859 + 6 others

USN-3851-1: Django vulnerability

9 January 2019

Django could be made to expose spoofed information over the network.

  • Ubuntu 18.10 ,
  • 18.04 LTS,
  • 16.04 LTS,
  • 14.04 LTS

CVE ID

CVE-2019-3498

  1. Previous page
  2. 16
  3. 17
  4. 18
  5. 19
  6. 20
  7. Next page

Resources

Join the discussion

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›