Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

1 - 10 of 199 results

USN-4424-1: snapd vulnerabilities

15 July 2020

An intended access restriction in snapd could be bypassed by strict mode snaps.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2020-11933, CVE-2020-11934

USN-4423-1: Firefox vulnerability

14 July 2020

A X-Frame-Options bypass was discovered in Firefox.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

USN-4422-1: WebKitGTK+ vulnerabilities

14 July 2020

Several security issues were fixed in WebKitGTK.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS

CVE ID

CVE-2020-13753, CVE-2020-9802, CVE-2020-9803 + 5 others

USN-4421-1: Thunderbird vulnerabilities

8 July 2020

Several security issues were fixed in Thunderbird.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2020-12398, CVE-2020-12399, CVE-2020-12405 + 7 others

USN-4412-1: Linux kernel vulnerabilities

6 July 2020

Several security issues were fixed in the Linux kernel.

  • Ubuntu 19.10 ,
  • 18.04 LTS

CVE ID

CVE-2020-10711, CVE-2020-10751, CVE-2020-12768 + 2 others

USN-4418-1: OpenEXR vulnerabilities

6 July 2020

OpenEXR could be made to crash or run programs if it opened a specially crafted file.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2020-15305, CVE-2020-15306

USN-4417-1: NSS vulnerability

6 July 2020

NSS could be made to expose sensitive information.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2020-12402

USN-4416-1: GNU C Library vulnerabilities

6 July 2020

Several security issues were fixed in GNU C Library.

  • Ubuntu 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2017-12133, CVE-2017-18269, CVE-2018-11236 + 8 others

USN-4415-1: coTURN vulnerabilities

6 July 2020

Several security issues were fixed in coTURN.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2020-6061, CVE-2020-6062, CVE-2020-4067

USN-4408-1: Firefox vulnerabilities

2 July 2020

Firefox could be made to crash or run programs as your login if it opened a malicious website.

  • Ubuntu 20.04 LTS,
  • 19.10 ,
  • 18.04 LTS,
  • 16.04 LTS

CVE ID

CVE-2020-12420, CVE-2020-12417, CVE-2020-12415 + 8 others

  1. Previous page
  2. 1
  3. 2
  4. 3
  5. 4
  6. 5
  7. Next page

Resources

Join the discussion

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›