CVE reports

The Common Vulnerabilities and Exposures (CVE) system is used to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. Canonical keeps track of all CVEs affecting Ubuntu, and releases a security notice when an issue is fixed.

Canonical also produces Open Vulnerability and Assessment Language (OVAL) data, which is machine-readable, to enable auditing for CVEs and to determine whether a particular patch, via an Ubuntu Security Notice (USN), is appropriate for the local system.

Search

CVE ID or description contains:

Package:

Priority:

Ubuntu version

Status

Recent CVEs affecting Ubuntu

ID	Priority	Package	14.04 ESM	16.04 ESM	18.04 ESM	20.04 LTS	22.04 LTS	23.04	23.10
CVE-2023-2906	medium	wireshark	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-38201	medium	keylime	Ignored	Ignored	Ignored	Does not exist	Does not exist	Does not exist	—
CVE-2023-40577	medium	prometheus-alertmanager	Ignored	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-40477	medium	rar	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-40477	medium	unrar-nonfree	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-40217	medium	python2.7	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Does not exist	—
		python3.10	Ignored	Ignored	Ignored	Does not exist	Needs triage	Does not exist	—
		python3.11	Ignored	Ignored	Ignored	Does not exist	Needs triage	Needs triage	—
		python3.12	Ignored	Ignored	Ignored	Does not exist	Does not exist	Does not exist	—
		python3.7	Ignored	Ignored	Needs triage	Does not exist	Does not exist	Does not exist	—
		python3.9	Ignored	Ignored	Ignored	Needs triage	Does not exist	Does not exist	—
CVE-2023-39742	medium	giflib	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-4508	low	gerbv	Ignored	Needed	Needed	Needed	Needed	Needed	—
CVE-2023-40030	medium	rustc	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-40030	medium	cargo	Ignored	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2022-46884	medium	firefox	Ignored	Ignored	Ignored	Not vulnerable	Not vulnerable	Not vulnerable	—
		thunderbird	Ignored	Ignored	Ignored	Needed	Needed	Needed	—
		mozjs38	Does not exist	Does not exist	Needs triage	Does not exist	Does not exist	Does not exist	—
		mozjs52	Does not exist	Does not exist	Needs triage	Needs triage	Does not exist	Does not exist	—
		mozjs68	Does not exist	Does not exist	Does not exist	Needs triage	Does not exist	Does not exist	—
		mozjs78	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	Needs triage	—
		mozjs91	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	Does not exist	—
		mozjs102	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	Needs triage	—
CVE-2023-32559	medium	nodejs	Not vulnerable	Not vulnerable	Not vulnerable	Not vulnerable	Needed	Needed	—
CVE-2023-4513	medium	wireshark	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-4512	medium	wireshark	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-4511	medium	wireshark	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	—
CVE-2023-1409	medium	mongodb	Needs triage	Needs triage	Needs triage	Needs triage	Does not exist	Does not exist	—
CVE-2023-4042	medium	ghostscript	Ignored	Not vulnerable	Not vulnerable	Not vulnerable	Not vulnerable	Not vulnerable	—
CVE-2023-41105	medium	python	Ignored	Ignored	Ignored	Does not exist	Does not exist	Does not exist	—
		python2.7	Needs triage	Needs triage	Needs triage	Needs triage	Needs triage	Does not exist	—
		python3.4	Needs triage	Does not exist	Does not exist	Does not exist	Does not exist	Does not exist	—
		python3.5	Needs triage	Needs triage	Does not exist	Does not exist	Does not exist	Does not exist	—
		python3.6	Does not exist	Does not exist	Needs triage	Does not exist	Does not exist	Does not exist	—
		python3.7	Does not exist	Does not exist	Needs triage	Does not exist	Does not exist	Does not exist	—
		python3.8	Does not exist	Does not exist	Needs triage	Needs triage	Does not exist	Does not exist	—
		python3.9	Does not exist	Does not exist	Does not exist	Needs triage	Does not exist	Does not exist	—
		python3.10	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	Does not exist	—
		python3.11	Does not exist	Does not exist	Does not exist	Does not exist	Needs triage	Needs triage	—
		python3.12	Does not exist	Does not exist	Does not exist	Does not exist	Does not exist	Does not exist	—
CVE-2023-4431	medium	chromium-browser	Ignored	Ignored	Ignored	Not vulnerable	Not vulnerable	Not vulnerable	—
CVE-2023-4430	medium	chromium-browser	Ignored	Ignored	Ignored	Not vulnerable	Not vulnerable	Not vulnerable	—
CVE-2023-4429	medium	chromium-browser	Ignored	Ignored	Ignored	Not vulnerable	Not vulnerable	Not vulnerable	—
CVE-2023-4428	medium	chromium-browser	Ignored	Ignored	Ignored	Not vulnerable	Not vulnerable	Not vulnerable	—

Join the discussion

Canonical is offering Expanded Security Maintenance

Canonical is offering Ubuntu Expanded Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›

CVE reports

Search

Recent CVEs affecting Ubuntu

Join the discussion

Canonical is offering Expanded Security Maintenance

Further reading