Canonical Security Advisories — December 2023 — Canonical Security Advisories — Vulnetix

Try Vulnetix Request Demo

Canonical Security Advisories · December 2023 — Canonical Security Advisories

44 advisories 71 CVEs 2 EXPLOITED

Ubuntu Security Notices (USN-NNNN-N) for 2023-12. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 2 are already weaponised in the wild — see the Exploited section.

Back to archive Open Console

Advisories

USN-6561-1

USNExploitedCRITICAL2023-12-19

libssh vulnerability

CVEs:CVE-2023-48795

Upstream advisory

USN-6560-1

USNExploitedCRITICAL2023-12-19

openssh vulnerabilities

CVEs:CVE-2023-28531 CVE-2023-48795

Upstream advisory

USN-6488-2

USN2023-12-14

strongswan vulnerability

Upstream advisory

USN-6557-1

USN2023-12-14

vim vulnerabilities

Upstream advisory

USN-6233-2

USNMEDIUM2023-12-14

yajl vulnerabilities

CVEs:CVE-2017-16516 CVE-2022-24795 CVE-2023-33460

Upstream advisory

USN-6558-1

USNHIGH2023-12-14

audiofile vulnerabilities

CVEs:CVE-2018-13440 CVE-2018-17095 CVE-2019-13147 CVE-2022-24599

Upstream advisory

USN-6556-1

USNNONE2023-12-14

budgie-extras vulnerabilities

CVEs:CVE-2023-49342 CVE-2023-49343 CVE-2023-49344 CVE-2023-49345 CVE-2023-49346 CVE-2023-49347

Upstream advisory

USN-6546-2

USN2023-12-14

libreoffice vulnerabilities

Upstream advisory

USN-6555-2

USNCRITICAL2023-12-13

xorg-server vulnerabilities

CVEs:CVE-2023-6377 CVE-2023-6478

Upstream advisory

USN-6548-3

USNHIGH2023-12-13

linux-oracle vulnerabilities

CVEs:CVE-2023-3006 CVE-2023-5178 CVE-2023-5717 CVE-2023-6176 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-42754

Upstream advisory

USN-6549-3

USNHIGH2023-12-13

linux-lowlatency, linux-lowlatency-hwe-5.15 vulnerabilities

CVEs:CVE-2023-3773 CVE-2023-5158 CVE-2023-5178 CVE-2023-5717 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-39198 CVE-2023-42754

Upstream advisory

USN-6534-3

USNHIGH2023-12-13

linux-hwe-6.2, linux-lowlatency-hwe-6.2, linux-nvidia-6.2 vulnerabilities

CVEs:CVE-2023-3773 CVE-2023-5158 CVE-2023-5178 CVE-2023-5717 CVE-2023-6039 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-39198 CVE-2023-42754

Upstream advisory

USN-6555-1

USNCRITICAL2023-12-13

xorg-server, xwayland vulnerabilities

CVEs:CVE-2023-6377 CVE-2023-6478

Upstream advisory

USN-6554-1

USNNONE2023-12-13

gnome-control-center vulnerability

CVEs:CVE-2023-5616

Upstream advisory

USN-6548-2

USNHIGH2023-12-12

linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerabilities

CVEs:CVE-2023-3006 CVE-2023-5178 CVE-2023-5717 CVE-2023-6176 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-42754

Upstream advisory

USN-6553-1

USN2023-12-12

pydantic vulnerability

Upstream advisory

USN-6552-1

USN2023-12-12

netatalk vulnerability

Upstream advisory

USN-6549-2

USNHIGH2023-12-12

linux-gkeop, linux-gkeop-5.15 vulnerabilities

CVEs:CVE-2023-3773 CVE-2023-5158 CVE-2023-5178 CVE-2023-5717 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-39198 CVE-2023-42754

Upstream advisory

USN-6551-1

USN2023-12-12

ghostscript vulnerability

Upstream advisory

USN-6550-1

USNCRITICAL2023-12-12

postfixadmin vulnerabilities

CVEs:CVE-2022-29221 CVE-2022-31129 CVE-2023-28447

Upstream advisory

USN-6548-1

USNHIGH2023-12-11

linux, linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-bluefield, linux-gcp, linux-gcp-5.4, linux-hwe-5.4, linux-ibm, linux-ibm-5.4, linux-kvm, linux-xilinx-zynqmp vulnerabilities

CVEs:CVE-2023-3006 CVE-2023-5178 CVE-2023-5717 CVE-2023-6176 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-42754

Upstream advisory

USN-6549-1

USNHIGH2023-12-11

linux, linux-aws, linux-aws-5.15, linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-gcp, linux-gke, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-kvm, linux-nvidia, linux-oracle, linux-oracle-5.15, linux-raspi vulnerabilities

CVEs:CVE-2023-3773 CVE-2023-5158 CVE-2023-5178 CVE-2023-5717 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-39198 CVE-2023-42754

Upstream advisory

USN-6546-1

USN2023-12-11

libreoffice vulnerabilities

CVEs:CVE-2023-6185 CVE-2023-6186

Upstream advisory

USN-6545-1

USN2023-12-11

webkit2gtk vulnerabilities

Upstream advisory

USN-6500-2

USN2023-12-11

squid3 vulnerabilities

Upstream advisory

USN-6544-1

USNCRITICAL2023-12-11

binutils vulnerabilities

CVEs:CVE-2020-19726 CVE-2021-46174 CVE-2022-4285 CVE-2022-35205 CVE-2022-38533

Upstream advisory

USN-6543-1

USN2023-12-11

tar vulnerability

Upstream advisory

USN-6542-1

USN2023-12-07

tinyxml vulnerability

Upstream advisory

USN-6541-1

USNHIGH2023-12-07

glibc vulnerabilities

CVEs:CVE-2023-4806 CVE-2023-4813 CVE-2023-5156

Upstream advisory

USN-6522-2

USN2023-12-07

freerdp2 vulnerabilities

Upstream advisory

USN-6540-1

USN2023-12-07

bluez vulnerability

Upstream advisory

USN-6539-1

USNHIGH2023-12-06

python-cryptography vulnerabilities

CVEs:CVE-2023-23931 CVE-2023-49083

Upstream advisory

USN-6538-1

USNCRITICAL2023-12-06

postgresql-12, postgresql-14, postgresql-15 vulnerabilities

CVEs:CVE-2023-5868 CVE-2023-5869 CVE-2023-5870

Upstream advisory

USN-6537-1

USN2023-12-06

linux-gcp vulnerabilities

CVEs:CVE-2023-4244 CVE-2023-5090 CVE-2023-5158 CVE-2023-5178 CVE-2023-5345 CVE-2023-5633 CVE-2023-5717 CVE-2023-31085 CVE-2023-39189 CVE-2023-42754 CVE-2023-45898

Upstream advisory

USN-6536-1

USNHIGH2023-12-06

linux, linux-aws, linux-laptop, linux-lowlatency, linux-oem-6.5, linux-oracle, linux-raspi, linux-starfive vulnerabilities

CVEs:CVE-2023-5158 CVE-2023-5178 CVE-2023-5717 CVE-2023-39189 CVE-2023-42754 CVE-2023-45898

Upstream advisory

USN-6535-1

USN2023-12-06

curl vulnerabilities

Upstream advisory

USN-6463-2

USN2023-12-06

open-vm-tools vulnerabilities

Upstream advisory

USN-6534-1

USNHIGH2023-12-05

linux, linux-aws, linux-aws-6.2, linux-azure, linux-azure-6.2, linux-azure-fde-6.2, linux-lowlatency, linux-oracle, linux-raspi, linux-starfive vulnerabilities

CVEs:CVE-2023-3773 CVE-2023-5158 CVE-2023-5178 CVE-2023-5717 CVE-2023-6039 CVE-2023-37453 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-39198 CVE-2023-42754

Upstream advisory

USN-6533-1

USNHIGH2023-12-05

linux-oem-6.1 vulnerabilities

CVEs:CVE-2023-46813 CVE-2023-46862

Upstream advisory

USN-6532-1

USNHIGH2023-12-05

linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities

CVEs:CVE-2023-5717 CVE-2023-20593 CVE-2023-31085 CVE-2023-39189 CVE-2023-39192 CVE-2023-39193 CVE-2023-39194 CVE-2023-42754 CVE-2023-45862 CVE-2023-45871

Upstream advisory

USN-6531-1

USNHIGH2023-12-05

redis vulnerabilities

CVEs:CVE-2022-24834 CVE-2022-35977 CVE-2022-36021 CVE-2023-25155 CVE-2023-28856 CVE-2023-45145

Upstream advisory

USN-6530-1

USN2023-12-05

haproxy vulnerability

Upstream advisory

USN-6529-1

USNMEDIUM2023-12-04

request-tracker4 vulnerabilities

CVEs:CVE-2021-38562 CVE-2022-25802 CVE-2023-41259 CVE-2023-41260

Upstream advisory

USN-6509-2

USN2023-12-04

firefox regressions

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console