Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search USNs
USN ID, name, description or CVE ID contains
1 - 10 of 305 results
5 April 2012
The GnuTLS library could be made to crash under certain conditions.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04 ,
- 8.04
CVE ID
5 April 2012
libpng could be made to crash or run programs as your login if it opened a specially crafted file.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04 ,
- 8.04
CVE ID
4 April 2012
The TIFF library could be made to crash or run programs as your login if it opened a specially crafted file.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04 ,
- 8.04
CVE ID
27 March 2012
A certificate authority mis-issued fraudulent certificates.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04
27 March 2012
Several security issues were fixed in the kernel.
- Ubuntu 10.10
23 March 2012
Several security issues were fixed in Thunderbird.
- Ubuntu 11.04 ,
- 10.10 ,
- 10.04
CVE ID
CVE-2011-3658, CVE-2012-0457, CVE-2012-0456 + 4 others
23 March 2012
FreeType could be made to crash or run programs as your login if it opened a specially crafted font file.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04 ,
- 8.04
CVE ID
CVE-2012-1126, CVE-2012-1127, CVE-2012-1128 + 16 others
22 March 2012
libpng could be made to crash or run programs as your login if it opened a specially crafted file.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04 ,
- 8.04
CVE ID
19 March 2012
Several security issues were fixed in Firefox.
- Ubuntu 10.10 ,
- 10.04
CVE ID
CVE-2011-3658, CVE-2012-0457, CVE-2012-0456 + 4 others
16 March 2012
This update provides compatible ubufox packages for the latest Firefox.
- Ubuntu 11.10 ,
- 11.04 ,
- 10.10 ,
- 10.04
Resources
Join the discussion
Canonical is offering
Expanded Security Maintenance
Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.