USN-7251-1: HarfBuzz vulnerability ›
3 February 2025
HarfBuzz could be made to consume resources if it opened a specially crafted font.
Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search
Latest Notices
USN-7250-1: Netdata vulnerabilities ›
3 February 2025
Several security issues were fixed in netdata.
CVE-2018-18836 , CVE-2024-34250 , CVE-2018-18837 , and 4 others
USN-7238-2: Linux kernel (Oracle) vulnerabilities ›
30 January 2025
Several security issues were fixed in the Linux kernel.
USN-7235-2: Linux kernel (Azure) Unknown kernel vulnerabilities ›
30 January 2025
Several security issues were fixed in the Linux kernel.
USN-7234-2: Linux kernel (HWE) vulnerabilities ›
30 January 2025
Several security issues were fixed in the Linux kernel.
CVE-2024-40967 , CVE-2024-53164 , CVE-2023-21400 , and 2 others
USN-7233-2: Linux kernel (Azure) vulnerabilities ›
30 January 2025
Several security issues were fixed in the Linux kernel.
CVE-2024-26929 , CVE-2024-26663 , CVE-2024-38661 , and 12 others
USN-7246-1: jQuery vulnerabilities ›
30 January 2025
Several security issues were fixed in jquery.
USN-7245-1: MySQL vulnerabilities ›
30 January 2025
Several security issues were fixed in MySQL.
CVE-2025-21540 , CVE-2025-21559 , CVE-2025-21522 , and 12 others
USN-7242-1: Tomcat vulnerability ›
30 January 2025
Tomcat could be made to run programs if it received specially crafted network traffic.
USN-7244-1: Jinja2 vulnerabilities ›
30 January 2025
Several security issues were fixed in jinja2.