20 January 2025
Python could be made to consume resources if it received specially crafted network traffic.
Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search
Latest Notices
20 January 2025
Python could allow Server-Side Request Forgery attacks.
20 January 2025
Several security issues were fixed in the Linux kernel.
CVE-2024-49927 , CVE-2024-36893 , CVE-2024-49856 , and 164 others
20 January 2025
Several security issues were fixed in PoDoFo.
CVE-2018-11255 , CVE-2020-18971 , CVE-2018-20797 , and 7 others
16 January 2025
tqdm could be made to crash or to allow arbitary code execution if it received specially crafted input.
16 January 2025
USN-7206-1 caused some regression in rsync.
16 January 2025
libxml2 could be made to expose sensitive information over the network.
16 January 2025
HarfBuzz could be made to crash or run programs as your login if it opened a specially crafted file.
16 January 2025
poppler could be made to crash or expose sensitive information if it opened a specially crafted file.
16 January 2025
Several security issues were fixed in Python 2.7.