Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

71 - 80 of 192 results

USN-2945-1: XChat-GNOME vulnerability

4 April 2016

XChat-GNOME could be made to expose sensitive information over the network.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

USN-2943-1: PCRE vulnerabilities

29 March 2016

PCRE could be made to crash or run programs if it processed a specially-crafted regular expression.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

CVE ID

CVE-2014-9769, CVE-2015-2325, CVE-2015-2326 + 22 others

USN-2942-1: OpenJDK 7 vulnerability

24 March 2016

OpenJDK could be made to crash or run programs as your login if it received specially crafted input.

  • Ubuntu 15.10 ,
  • 14.04 LTS

CVE ID

CVE-2016-0636

USN-2941-1: Quagga vulnerabilities

24 March 2016

Quagga could be made to crash or run programs if it received specially crafted network traffic.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

CVE ID

CVE-2013-2236, CVE-2016-2342

USN-2939-1: LibTIFF vulnerabilities

23 March 2016

LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

CVE ID

CVE-2015-8665, CVE-2015-8683, CVE-2015-8781 + 3 others

USN-2938-1: Git vulnerabilities

21 March 2016

Git could be made to crash or run programs as your login if it received changes from a specially crafted remote repository.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

CVE ID

CVE-2016-2315, CVE-2016-2324

USN-2937-1: WebKitGTK+ vulnerabilities

21 March 2016

Several security issues were fixed in WebKitGTK+.

  • Ubuntu 15.10 ,
  • 14.04 LTS

CVE ID

CVE-2014-1748, CVE-2015-1071, CVE-2015-1076 + 24 others

USN-2935-2: PAM regression

16 March 2016

USN-2935-1 introduced a regression in PAM.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

USN-2935-1: PAM vulnerabilities

16 March 2016

Several security issues were fixed in PAM.

  • Ubuntu 15.10 ,
  • 14.04 LTS,
  • 12.04

CVE ID

CVE-2013-7041, CVE-2014-2583, CVE-2015-3238

USN-2930-3: Linux kernel (Raspberry Pi 2) vulnerabilities

16 March 2016

Several security issues were fixed in the kernel.

  • Ubuntu 15.10

CVE ID

CVE-2015-7566, CVE-2015-8767, CVE-2016-0723 + 11 others

  1. Previous page
  2. 6
  3. 7
  4. 8
  5. 9
  6. 10
  7. Next page

Resources

Join the discussion

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›