USN-6597-1: Puma vulnerability ›
25 January 2024
Puma could be made to consume resources if it received specially crafted network traffic.
Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search
Latest Notices
USN-6596-1: Apache::Session::LDAP vulnerability ›
24 January 2024
Apache::Session::LDAP could be made to expose sensitive information through spoofing if it received invalid X.509 certificate.
USN-6595-1: PyCryptodome vulnerability ›
23 January 2024
PyCryptodome could be made to expose sensitive information.
USN-6594-1: Squid vulnerabilities ›
23 January 2024
Several security issues were fixed in Squid.
USN-6593-1: GnuTLS vulnerabilities ›
22 January 2024
Several security issues were fixed in GnuTLS.
USN-6587-2: X.Org X Server vulnerabilities ›
22 January 2024
Several security issues were fixed in X.Org X Server.
CVE-2023-6816 , CVE-2024-0408 , CVE-2024-0229 , and 3 others
USN-6592-1: libssh vulnerabilities ›
22 January 2024
Several security issues were fixed in libssh.
USN-6591-1: Postfix vulnerability ›
22 January 2024
Postfix could allow bypass of email authentication if it received specially crafted network traffic.
USN-6590-1: Xerces-C++ vulnerabilities ›
18 January 2024
Several security issues were fixed in Xerces-C++.
USN-6589-1: FileZilla vulnerability ›
18 January 2024
FileZilla could be made to expose sensitive information over the network.