USN-6159-1: Tornado vulnerability ›
13 June 2023
Tornado could be made to redirect users to arbitrary web site if it opened a specially crafted URL.
Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search
Latest Notices
USN-6158-1: Node Fetch vulnerability ›
13 June 2023
Node Fetch could be made to expose sensitive information if it opened a specially crafted file.
USN-6143-2: Firefox regressions ›
13 June 2023
USN-6143-1 caused some minor regressions in Firefox.
USN-6148-1: SNI Proxy vulnerability ›
12 June 2023
SNI Proxy could be made to crash or run programs if it received specially crafted input.
USN-6157-1: GlusterFS vulnerability ›
12 June 2023
GlusterFS could be made to crash if it received a specially crafted request.
USN-6156-1: SSSD vulnerability ›
12 June 2023
SSSD could allow unintended access to network services.
USN-6155-1: Requests vulnerability ›
12 June 2023
Requests could be made to expose sensitive information over the network.
USN-6154-1: Vim vulnerabilities ›
12 June 2023
Several security issues were fixed in Vim.
USN-6153-1: Jupyter Core vulnerability ›
12 June 2023
Jupyter Core could be made to run programs as your login if it opened a specially crafted file.
USN-6152-1: Linux kernel (GKE) regression ›
8 June 2023
The system could suffer with performance degradation in certain conditions.