USN-6664-1: less vulnerability ›
27 February 2024
less could be made to crash or run arbitrary commands if it receive a crafted input.
Ubuntu Security Notices
Developers issue an Ubuntu Security Notice when a security issue is fixed in an official Ubuntu package.
To report a security vulnerability in an Ubuntu package, please contact the Security Team.
The Security Team also produces OVAL files for each Ubuntu release. These are an industry-standard machine-readable format dataset that contain details of all known security vulnerabilities and fixes relevant to the Ubuntu release, and can be used to determine whether a particular patch is appropriate. OVAL files can also be used to audit a system to check whether the latest security fixes have been applied.
Search
Latest Notices
USN-6663-1: OpenSSL update ›
27 February 2024
Add implicit rejection in PKCS#1 v1.5 in OpenSSL.
USN-6305-2: PHP vulnerabilities ›
27 February 2024
Several security issues were fixed in PHP.
USN-6660-1: OpenJDK 11 vulnerabilities ›
27 February 2024
Several security issues were fixed in OpenJDK 11.
CVE-2024-20926 , CVE-2024-20918 , CVE-2024-20919 , and 3 others
USN-6662-1: OpenJDK 21 vulnerabilities ›
27 February 2024
Several security issues were fixed in OpenJDK 21.
CVE-2024-20952 , CVE-2024-20921 , CVE-2024-20945 , and 2 others
USN-6661-1: OpenJDK 17 vulnerabilities ›
27 February 2024
Several security issues were fixed in OpenJDK 17.
CVE-2024-20952 , CVE-2024-20921 , CVE-2024-20945 , and 3 others
USN-6659-1: libde265 vulnerabilities ›
26 February 2024
Several security issues were fixed in libde265.
CVE-2022-47665 , CVE-2023-24752 , CVE-2022-43244 , and 10 others
USN-6658-1: libxml2 vulnerability ›
26 February 2024
libxml2 could be made to crash or run programs if it opened a specially crafted file.
USN-6657-1: Dnsmasq vulnerabilities ›
26 February 2024
Several security issues were fixed in Dnsmasq.
USN-6656-1: PostgreSQL vulnerability ›
26 February 2024
PostgreSQL could be made to run arbitrary SQL.