Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
61 - 70 of 373 results
24 February 2014
Several security issues were fixed in PostgreSQL.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04 ,
- 10.04
CVE ID
CVE-2014-0060, CVE-2014-0061, CVE-2014-0062 + 4 others
19 February 2014
USN-2102-1 introduced a regression in Firefox.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
19 February 2014
Several security issues were fixed in Thunderbird.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
CVE ID
CVE-2014-1477, CVE-2014-1479, CVE-2014-1482 + 6 others
18 February 2014
Several security issues were fixed in the kernel.
- Ubuntu 12.10
CVE ID
CVE-2013-2929, CVE-2013-4592, CVE-2013-6378 + 1 other
18 February 2014
Several security issues were fixed in the kernel.
- Ubuntu 12.10
CVE ID
CVE-2013-2929, CVE-2013-4592, CVE-2013-6378 + 1 other
13 February 2014
The cluster could be made to run programs as an administrator.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
CVE ID
13 February 2014
USN-2098-1 introduced a regression in LibYAML.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
11 February 2014
Libav could be made to crash or run programs as your login if it opened a specially crafted file.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
10 February 2014
Firefox could be made to crash or run programs as your login if it opened a malicious website.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
CVE ID
CVE-2014-1477, CVE-2014-1478, CVE-2014-1479 + 11 others
10 February 2014
libgadu could be made to crash or run programs if it received specially crafted network traffic.
- Ubuntu 13.10 ,
- 12.10 ,
- 12.04
CVE ID
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.