CVE reports
The Common Vulnerabilities and Exposures (CVE) system is used to identify, define, and catalog publicly disclosed cybersecurity vulnerabilities. Canonical keeps track of all CVEs affecting Ubuntu, and releases a security notice when an issue is fixed.
Canonical also produces Open Vulnerability and Assessment Language (OVAL) data, which is machine-readable, to enable auditing for CVEs and to determine whether a particular patch, via an Ubuntu Security Notice (USN), is appropriate for the local system.
Search
Recent CVEs affecting Ubuntu
| ID | Priority | Package |
14.04 ESM
|
16.04 ESM
|
18.04 ESM
|
20.04 LTS
|
22.04 LTS
|
22.10
|
23.04
|
23.10
|
|---|---|---|---|---|---|---|---|---|---|---|
| CVE-2023-32323 |
medium
|
matrix-synapse |
Ignored
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-2858 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-2857 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-2856 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-2855 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-2854 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-2255 |
medium
|
libreoffice |
Ignored
|
Needs triage
|
Needed
|
Needed
|
Needed
|
Released
|
Released
|
— |
| CVE-2023-0950 |
medium
|
libreoffice |
Ignored
|
Needs triage
|
Needed
|
Needed
|
Needed
|
Released
|
Not vulnerable
|
— |
| CVE-2023-0668 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-0666 |
medium
|
wireshark |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2022-46945 |
medium
|
nagvis |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2022-39374 |
medium
|
matrix-synapse |
Ignored
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2022-39335 |
medium
|
matrix-synapse |
Ignored
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-32409 |
medium
|
wpewebkit |
Ignored
|
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
— |
| webkitgtk |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
| webkit2gtk |
Does not exist
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
— | ||
| qtwebkit-source |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
| qtwebkit-opensource-src |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
| CVE-2023-32373 |
medium
|
webkitgtk |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— |
| webkit2gtk |
Does not exist
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
— | ||
| qtwebkit-source |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
| qtwebkit-opensource-src |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— | ||
| wpewebkit |
Ignored
|
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
| CVE-2023-28370 |
medium
|
python-tornado |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| salt |
Needs triage
|
Needs triage
|
Needs triage
|
Does not exist
|
Needs triage
|
Needs triage
|
Does not exist
|
— | ||
| CVE-2023-28204 |
medium
|
qtwebkit-opensource-src |
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| webkitgtk |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
| webkit2gtk |
Does not exist
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
Deferred
|
— | ||
| qtwebkit-source |
Ignored
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
Does not exist
|
Does not exist
|
— | ||
| wpewebkit |
Ignored
|
Does not exist
|
Does not exist
|
Needs triage
|
Needs triage
|
Does not exist
|
Does not exist
|
— | ||
| CVE-2023-1523 |
medium
|
snapd |
Ignored
|
Needed
|
Needed
|
Needed
|
Needed
|
Needed
|
Needed
|
— |
| CVE-2023-32695 |
medium
|
node-socket.io-parser |
Ignored
|
Ignored
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| CVE-2023-32681 |
medium
|
requests |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |
| python-pip |
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
Needs triage
|
— |