CVE reports
The Common Vulnerabilities and Exposures (CVE) system is used to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. Canonical keeps track of all CVEs affecting Ubuntu, and releases a security notice when an issue is fixed.
Canonical also produces Open Vulnerability and Assessment Language (OVAL) data, which is machine-readable, to enable auditing for CVEs and to determine whether a particular patch, via an Ubuntu Security Notice (USN), is appropriate for the local system.
Search
Recent CVEs affecting Ubuntu
ID | Priority | Package |
14.04 ESM
|
16.04 ESM
|
18.04 ESM
|
20.04 LTS
|
22.04 LTS
|
23.04
|
23.10
|
---|---|---|---|---|---|---|---|---|---|
CVE-2023-2906 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-38201 |
medium
|
keylime |
Ignored
|
Ignored
|
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— |
CVE-2023-40577 |
medium
|
prometheus-alertmanager |
Ignored
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-40477 |
medium
|
rar |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
unrar-nonfree |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
CVE-2023-40217 |
medium
|
python2.7 |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Does not exist
|
— |
python3.10 |
Ignored
|
Ignored
|
Ignored
|
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
python3.11 |
Ignored
|
Ignored
|
Ignored
|
Does not exist
|
Needs triage
|
Needs triage
|
— | ||
python3.12 |
Ignored
|
Ignored
|
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
python3.7 |
Ignored
|
Ignored
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
python3.9 |
Ignored
|
Ignored
|
Ignored
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
CVE-2023-39742 |
medium
|
giflib |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-4508 |
low
|
gerbv |
Ignored
|
Needed
|
Needed
|
Needed
|
Needed
|
Needed
|
— |
CVE-2023-40030 |
medium
|
rustc |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
cargo |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
CVE-2022-46884 |
medium
|
firefox |
Ignored
|
Ignored
|
Ignored
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |
thunderbird |
Ignored
|
Ignored
|
Ignored
|
Needed
|
Needed
|
Needed
|
— | ||
mozjs38 |
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
mozjs52 |
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
mozjs68 |
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
mozjs78 |
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
— | ||
mozjs91 |
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
mozjs102 |
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
— | ||
CVE-2023-32559 |
medium
|
nodejs |
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Needed
|
Needed
|
— |
CVE-2023-4513 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-4512 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-4511 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
CVE-2023-1409 |
medium
|
mongodb |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
— |
CVE-2023-4042 |
medium
|
ghostscript |
Ignored
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |
CVE-2023-41105 |
medium
|
python |
Ignored
|
Ignored
|
Ignored
|
Does not exist
|
Does not exist
|
Does not exist
|
— |
python2.7 |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Does not exist
|
— | ||
python3.4 |
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
python3.5 |
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
python3.6 |
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
python3.7 |
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
python3.8 |
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
python3.9 |
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
python3.10 |
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Does not exist
|
— | ||
python3.11 |
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
— | ||
python3.12 |
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
CVE-2023-4431 |
medium
|
chromium-browser |
Ignored
|
Ignored
|
Ignored
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |
CVE-2023-4430 |
medium
|
chromium-browser |
Ignored
|
Ignored
|
Ignored
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |
CVE-2023-4429 |
medium
|
chromium-browser |
Ignored
|
Ignored
|
Ignored
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |
CVE-2023-4428 |
medium
|
chromium-browser |
Ignored
|
Ignored
|
Ignored
|
Not vulnerable
|
Not vulnerable
|
Not vulnerable
|
— |