Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
151 - 160 of 192 results
19 December 2015
Several security issues were fixed in the kernel.
- Ubuntu 15.10
CVE ID
CVE-2015-8550, CVE-2015-8551, CVE-2015-8552 + 1 other
18 December 2015
sosreport could be made to expose sensitive information or overwrite files as the administrator.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS
CVE ID
17 December 2015
Several security issues were fixed in the kernel.
- Ubuntu 15.10
CVE ID
CVE-2015-7799, CVE-2015-7872, CVE-2015-7884 + 1 other
17 December 2015
Several security issues were fixed in the kernel.
- Ubuntu 15.10
CVE ID
CVE-2015-7799, CVE-2015-7872, CVE-2015-7884 + 2 others
16 December 2015
cups-filters could be made to run programs as the lp user if it processed a specially crafted print job.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS
CVE ID
15 December 2015
Firefox could be made to crash or run programs as your login if it opened a malicious website.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS,
- 12.04
CVE ID
CVE-2015-7201, CVE-2015-7202, CVE-2015-7203 + 18 others
15 December 2015
Bind could be made to crash if it received specially crafted network traffic.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS,
- 12.04
CVE ID
15 December 2015
GRUB password protection can be bypassed.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS,
- 12.04
CVE ID
15 December 2015
Git could be made to run programs as your login if it processed an untrusted repository.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS,
- 12.04
CVE ID
14 December 2015
libxml2 could be made to crash if it opened a specially crafted file.
- Ubuntu 15.10 ,
- 15.04 ,
- 14.04 LTS,
- 12.04
CVE ID
CVE-2015-5312, CVE-2015-7497, CVE-2015-7498 + 5 others
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.