Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
21 - 30 of 243 results
31 March 2011
An attacker could send crafted input to OpenLDAP and cause it to crash.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10 ,
- 8.04
CVE ID
30 March 2011
A GDM vulnerability allows local attackers to gain root privileges.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10
CVE ID
29 March 2011
An attacker could send crafted input to vsftpd and cause it to crash.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10 ,
- 8.04 ,
- 6.06
CVE ID
29 March 2011
An attacker could send crafted input to Tomcat and cause it to crash or read and write arbitrary files.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10
CVE ID
29 March 2011
An attacker could send crafted input to the Subversion mod_dav_svn module for Apache and cause it to crash.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10 ,
- 8.04 ,
- 6.06
CVE ID
29 March 2011
An attacker could send crafted input to Quagga and cause it to crash.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10 ,
- 8.04 ,
- 6.06
CVE ID
29 March 2011
An attacker could send crafted input to libvirt and cause it to crash.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10
CVE ID
25 March 2011
Firefox/xulrunner update for revoked certificates
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10 ,
- 8.04
18 March 2011
Multiple kernel vulnerabilities.
- Ubuntu 9.10
CVE ID
CVE-2010-4075, CVE-2010-4076, CVE-2010-4077 + 5 others
15 March 2011
MIT Kerberos 5 Key Distribution Center (KDC) daemon denial of service vulnerability.
- Ubuntu 10.10 ,
- 10.04 ,
- 9.10
CVE ID
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.