Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Subscribe for updates  

Mailing list Atom RSS

Search USNs

USN ID, name, description or CVE ID contains

Filter by Ubuntu release

61 - 70 of 585 results

USN-952-1: CUPS vulnerabilities

21 June 2010

  • Ubuntu 10.04 ,
  • 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-0540, CVE-2010-1748, CVE-2010-0542

USN-954-1: tiff vulnerabilities

21 June 2010

Multiple integer overflows leading to crashes or arbitrary code execution.

  • Ubuntu 10.04 ,
  • 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-1411, CVE-2010-2065, CVE-2010-2067

USN-951-1: Samba vulnerability

16 June 2010

Remote code execution as root via Samba.

  • Ubuntu 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-2063

USN-950-1: MySQL vulnerabilities

9 June 2010

  • Ubuntu 10.04 ,
  • 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-1621, CVE-2010-1626, CVE-2010-1848 + 2 others

USN-948-1: GnuTLS vulnerability

3 June 2010

Under certain circumstances, an attacker might be able to crash GnuTLS.

  • Ubuntu 6.06

CVE ID

CVE-2006-7239

USN-947-1: Linux kernel vulnerabilities

3 June 2010

Multiple flaws in the Linux kernel.

  • Ubuntu 10.04 ,
  • 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2009-4271, CVE-2009-4537, CVE-2010-0008 + 18 others

USN-944-1: GNU C Library vulnerabilities

25 May 2010

The GNU C library did not correctly handle certain mnt entries, strfmon arguments, and ELF program headers.

  • Ubuntu 10.04 ,
  • 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-0296, CVE-2010-0830, CVE-2008-1391

USN-942-1: PostgreSQL vulnerabilities

21 May 2010

If PostgreSQL was configured to use Perl and/or Tcl stored procedures a remote authenticated attacker could run programs as the database user.

  • Ubuntu 10.04 ,
  • 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-1169, CVE-2010-1170, CVE-2010-1975

USN-940-1: Kerberos vulnerabilities

19 May 2010

Unauthenticated remote attackers could cause Kerberos servers to crash, leading to a denial of service.

  • Ubuntu 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2007-5971, CVE-2010-1320, CVE-2007-5902 + 2 others

USN-933-1: PostgreSQL vulnerability

28 April 2010

PostgreSQL vulnerability

  • Ubuntu 9.10 ,
  • 9.04 ,
  • 8.04 ,
  • 6.06

CVE ID

CVE-2010-0442

  1. Previous page
  2. 5
  3. 6
  4. 7
  5. 8
  6. 9
  7. Next page

Resources

Join the discussion

Further reading

Canonical is offering
Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›