Ubuntu Security Notices

Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package. You can find additional guidance for high-profile vulnerabilities in the Ubuntu Vulnerability Knowledge Base section.

To report a security vulnerability in an Ubuntu package, please contact the Security Team.

The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.

Search

Release:

Details contain:

Latest Notices

USN-7343-1: Jinja2 vulnerabilities ›

11 March 2025

Several security issues were fixed in Jinja2.

CVE-2025-27516 , CVE-2024-56201 , CVE-2024-56326

USN-7332-2: Linux kernel vulnerabilities ›

11 March 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-41064 , CVE-2024-36964 , CVE-2024-42070 , and 34 others

Ubuntu 16.04 ESM

USN-7344-1: Linux kernel vulnerabilities ›

11 March 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-41064 , CVE-2024-36964 , CVE-2024-42070 , and 36 others

USN-7342-1: Linux kernel vulnerabilities ›

11 March 2025

Several security issues were fixed in the Linux kernel.

CVE-2024-40981 , CVE-2024-26685 , CVE-2023-52522 , and 35 others

USN-7341-1: FreeRDP vulnerabilities ›

11 March 2025

Several security issues were fixed in FreeRDP.

CVE-2024-32040 , CVE-2024-32460 , CVE-2024-32658 , and 3 others

Ubuntu 24.04 LTS

USN-7340-1: OpenVPN vulnerabilities ›

11 March 2025

Several security issues were fixed in OpenVPN.

CVE-2024-5594 , CVE-2017-12166

USN-7338-1: CRaC JDK 17 vulnerabilities ›

11 March 2025

Several security issues were fixed in CRaC JDK 17.

CVE-2025-21502 , CVE-2024-21217 , CVE-2024-21208 , and 2 others

Ubuntu 24.10

USN-7339-1: CRaC JDK 21 vulnerabilities ›

11 March 2025

Several security issues were fixed in CRaC JDK 21.

CVE-2024-21235 , CVE-2024-21208 , CVE-2024-21210 , and 2 others

Ubuntu 24.10

USN-7337-1: LibreOffice vulnerability ›

10 March 2025

LibreOffice could be made to run programs if it opened a specially crafted file.

USN-7299-2: X.Org X Server vulnerabilities ›

10 March 2025

Several security issues were fixed in X.Org X Server.

CVE-2025-26594 , CVE-2025-26601 , CVE-2025-26600 , and 5 others

Subscribe

9
10
11
12
13

Subscribe

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

Further reading