Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

canonical — Vulnerabilities & Security Advisories 126

Browse all 126 CVE security advisories affecting canonical. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Canonical Ltd. primarily develops and maintains Ubuntu, a widely deployed Linux distribution, alongside the OpenStack cloud infrastructure platform and the Snap package management system. Security audits reveal a significant volume of recorded vulnerabilities, currently totaling 107 CVEs, reflecting the extensive codebase and third-party dependencies inherent in these large-scale software ecosystems. Historically, the most prevalent vulnerability classes include remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from improper input validation or insecure default configurations within associated services. While no single catastrophic incident has defined the company’s security history, the sheer number of disclosed issues highlights the challenges of maintaining rigorous patch cycles across diverse components. These findings underscore the necessity for continuous monitoring and timely updates for organizations relying on Canonical’s open-source technologies to mitigate potential exploitation risks.

Top products by canonical: apport LXD Ubuntu Linux Juju snapd Multipass Python-apt aptdaemon pulseaudio cloud-init Ubuntu Kernel authd whoopsie Ubuntu unity-firefox-extension MAAS Juju utils canonical-livepatch mysql-k8s-operator get-workflow-version-action snap operator Ubuntu Server Microceph add-apt-repository apt snapcraft Linux kernel software-properties ppp
CVE IDTitleCVSSSeverityPublished
CVE-2026-28385 SSRF via image import from URL allows internal network probing by authenticated users — lxdCWE-918 5.0 Medium2026-06-26
CVE-2026-9640 LXD Snapshot Import Privilege Escalation Vulnerability — LXDCWE-863 7.2 High2026-06-26
CVE-2026-9639 Authenticated Denial of Service via Malicious Backup Tarball in LXD — LXDCWE-476 6.5 Medium2026-06-26
CVE-2026-12411 Broken Access Control in Canonical LXD DevLXD API — lxdCWE-639 8.4 High2026-06-26
CVE-2026-10720 MicroCeph path traversal issue in the remote-import API — MicrocephCWE-23--2026-06-19
CVE-2026-47337 NULL pointer dereference in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation — Ubuntu LinuxCWE-476 3.3 Low2026-05-28
CVE-2026-47336 Use of uninitialized value in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation rules — Ubuntu LinuxCWE-457 3.3 Low2026-05-28
CVE-2026-47335 NULL pointer dereference in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-476 5.5 Medium2026-05-28
CVE-2026-47334 Deadlock or kernel panic in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-833 5.5 Medium2026-05-28
CVE-2026-47333 Out-of-bounds read in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-125 7.8 High2026-05-28
CVE-2026-47332 Out-of-bounds read in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-125 5.5 Medium2026-05-28
CVE-2026-47331 Use-after-free in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-416 7.8 High2026-05-28
CVE-2026-47330 Use of uninitialized value in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-457 3.3 Low2026-05-28
CVE-2026-47329 Incorrect validation of field size in Ubuntu Linux AppArmor notification responses — Ubuntu LinuxCWE-1284 3.3 Low2026-05-28
CVE-2026-47328 Invalid pointer deallocation in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-590 6.1 Medium2026-05-28
CVE-2026-47327 NULL pointer dereference in Ubuntu Linux AppArmor notification handling — Ubuntu LinuxCWE-476 3.3 Low2026-05-28
CVE-2026-47326 Memory leak in Ubuntu Linux AppArmor large notification response allocation — Ubuntu LinuxCWE-401 5.5 Medium2026-05-28
CVE-2026-49237 Local Privilege Escalation in Canonical Multipass — MultipassCWE-276 7.8 High2026-05-28
CVE-2026-49238 SFTP Server VM Escape in Canonical Multipass — MultipassCWE-22 8.4 High2026-05-28
CVE-2026-6970 authd Denial of Service and Local Privilege Escalation — authdCWE-842 7.8AIHighAI2026-04-27
CVE-2026-6369 Exposed Session Token in canonical-livepatch client snap — canonical-livepatchCWE-306 7.8AIHighAI2026-04-20
CVE-2026-5412 Juju CloudSpec API could leak senstive information — JujuCWE-285 9.9 Critical2026-04-10
CVE-2026-5774 Juju API Server Denial of Service and Authentication Replay via Unsynchronized Token Map — JujuCWE-362 8.8 -2026-04-10
CVE-2025-14551 Senstive information disclosure was affecting subiquity — UbuntuCWE-1258 6.2AIMediumAI2026-04-09
CVE-2025-15480 Senstive information disclosure was affecting ubuntu-desktop-provision — UbuntuCWE-1258 5.5AIMediumAI2026-04-09
CVE-2026-34179 Update of type field in restricted TLS certificate allows privilege escalation to cluster admin — lxdCWE-915 9.1 Critical2026-04-09
CVE-2026-34178 Importing a crafted backup leads to project restriction bypass — lxdCWE-20 9.1 Critical2026-04-09
CVE-2026-34177 VM lowlevel restriction bypass via raw.apparmor and raw.qemu.conf — lxdCWE-184 9.1 Critical2026-04-09
CVE-2026-4370 Improper TLS Client/Server authentication and certificate verification on Database Cluster — JujuCWE-295 10.0 Critical2026-04-01
CVE-2026-32694 Insecure Direct Object Reference attack via predictable secret ID in Juju — JujuCWE-343 6.6 Medium2026-03-18

This page lists every published CVE security advisory associated with canonical. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.