Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7434-2: Perl vulnerability ›

23 April 2025

Perl could be made to crash or run programs if it processed specially crafted data.

Ubuntu 25.04

USN-7431-2: HAProxy vulnerability ›

23 April 2025

HAProxy could be made to crash or run programs if it received specially crafted network traffic.

Ubuntu 25.04

USN-7443-2: Erlang vulnerability ›

23 April 2025

Erlang could be made to run programs if it received specially crafted network traffic.

Ubuntu 25.04

USN-7402-5: Linux kernel (GCP) vulnerabilities ›

22 April 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-53140 , CVE-2024-56598 , CVE-2024-53063 , and 5 others

Ubuntu 22.04 LTS

USN-7444-1: Synapse vulnerabilities ›

22 April 2025

Several security issues were fixed in Synapse.

CVE-2023-41335 , CVE-2023-32683 , CVE-2023-43796 , and 5 others

USN-7443-1: Erlang vulnerability ›

17 April 2025

Erlang could be made to run programs if it received specially crafted network traffic.

USN-7442-1: Ruby vulnerabilities ›

17 April 2025

Several security issues were fixed in Ruby.

CVE-2025-27220 , CVE-2025-27221 , CVE-2025-27219 , and 1 other

USN-7441-1: Eclipse Mosquitto vulnerabilities ›

16 April 2025

Several security issues were fixed in Eclipse Mosquitto.

CVE-2024-10525 , CVE-2024-3935

USN-7440-1: ImageMagick regression ›

16 April 2025

USN-6200-2 introduced a regression in ImageMagick.

Ubuntu 20.04 LTS

LSN-0111-1: Kernel Live Patch Security Notice ›

16 April 2025

Several security issues were fixed in the kernel.

CVE-2024-50302 , CVE-2024-26928 , CVE-2024-53063 , and 5 others

Subscribe

1
2
3
4
5

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading