Your submission was sent successfully! Close

Thank you for contacting us. A member of our team will be in touch shortly. Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Your preferences have been successfully updated. Close notification

Canonical Ubuntu

Menu

Products
Use cases
Support
Community
Download Ubuntu

ESM
Livepatch
Security standards
CVEs
Notices
Docker Images
Assurances

Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Search

Filter by Ubuntu release

Filter by Ubuntu releases

All maintained releases 24.04 LTS noble 22.04 LTS jammy

Still maintained with Ubuntu Pro

20.04 LTS focal 18.04 LTS bionic 16.04 LTS xenial 14.04 LTS trusty

Show unmaintained releases

Unmaintained

23.10 mantic 23.04 lunar 22.10 kinetic 21.10 impish 21.04 hirsute 20.10 groovy 19.10 eoan 19.04 disco 18.10 cosmic 17.10 artful 17.04 zesty 16.10 yakkety 15.10 wily 15.04 vivid 14.10 utopic 13.10 saucy 13.04 raring 12.10 quantal 12.04 precise 11.10 oneiric 11.04 natty 10.10 maverick 10.04 lucid 9.10 karmic 9.04 jaunty 8.10 intrepid 8.04 hardy 7.10 gutsy 7.04 feisty 6.10 edgy 6.06 dapper 5.10 breezy 5.04 hoary 4.10 warty

21 - 27 of 27 results

USN-7454-1: libarchive vulnerabilities

23 April 2025

Several security issues were fixed in libarchive.

Ubuntu 25.04 ,
24.10 ,
24.04 LTS,
22.04 LTS,
20.04 LTS

CVE ID

CVE-2025-25724, CVE-2025-1632

USN-7446-1: mod_auth_openidc vulnerability

23 April 2025

mod_auth_openidc could be made to expose sensitive information over the network.

Ubuntu 25.04 ,
24.10 ,
24.04 LTS,
22.04 LTS

CVE ID

USN-7447-1: Yelp vulnerability

23 April 2025

Yelp could be made to expose sensitive information over the network.

Ubuntu 25.04 ,
24.10 ,
24.04 LTS,
22.04 LTS,
20.04 LTS

CVE ID

USN-7434-2: Perl vulnerability

23 April 2025

Perl could be made to crash or run programs if it processed specially crafted data.

Ubuntu 25.04

CVE ID

USN-7431-2: HAProxy vulnerability

23 April 2025

HAProxy could be made to crash or run programs if it received specially crafted network traffic.

Ubuntu 25.04

CVE ID

USN-7443-2: Erlang vulnerability

23 April 2025

Erlang could be made to run programs if it received specially crafted network traffic.

Ubuntu 25.04

CVE ID

USN-7364-1: OpenSAML vulnerability

21 March 2025

OpenSAML and OpenSAML2 could have their authentication systems bypassed.

Ubuntu 25.04 ,
24.10 ,
24.04 LTS,
22.04 LTS,
20.04 LTS,
18.04 LTS,
16.04 LTS

1
2
3

Resources

Join the discussion

Ubuntu security updates mailing list
Security announcements mailing list

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

OpenStack OpenStack

What is OpenStack
Features
Managed
Consulting
Install
Support

Ceph Ceph

What is Ceph
Managed
Consulting
Docs
Install

Kubernetes Kubernetes

What is Kubernetes
Managed
Install
Docs
Resources

Managed Services Managed Services

OpenStack
Kubernetes
Ceph
Apps
Firefighting

AI / ML AI / ML

MLOps
Kubeflow
MLflow
Consulting
Data Science
MLOps workshop

Robotics Robotics

ROS ESM
What is ROS
Community
Docs

IoT IoT

App store
Embedded Linux
Management

Ubuntu Core Ubuntu Core

Features
Success stories
Services
Docs

Ubuntu Desktop Ubuntu Desktop

Organizations
Developers
Flavors
WSL

Ubuntu Server Ubuntu Server

Hyperscale
Docs

Cloud Cloud

What is cloud computing
What is private cloud
What is hybrid cloud
What is multi-cloud
Public cloud

Security Security

ESM
Livepatch
Security standards
CVEs
Notices
Docker Images
Assurances

Landscape Landscape

Features
Managed
Compare
Install
Docs
Log in to Landscape

Containers Containers

What are containers
Chiseled Ubuntu
Chiseled and .NET
Container Build Service

Downloads Downloads

Desktop
Server
Core
Cloud

Support Support

Your subscriptions
Account users
Pricing
Discourse

Pricing Pricing

Desktops
Devices

AI
Data
Infrastructure
Managed IT services
Open source security
IoT and devices
Cloud native development

Sectors

Automotive
Industrial
Government
Telco
Finance

Contact us

About us
Community
Careers
Blog
Resources
Press centre

© 2025 Canonical Ltd.

Ubuntu and Canonical are registered trademarks of Canonical Ltd.

Legal information
Data privacy
Manage your tracker settings
Report a bug on this site

Go to the top of the page