Known Vulnerabilities for products from Canonical
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Canonical".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44111 json | Not Provided | 2026-05-06 | 2026-05-07 | |
| CVE-2026-43249 json | Not Provided | 2026-05-06 | 2026-05-08 | |
| CVE-2026-43100 json | Not Provided | 2026-05-06 | 2026-05-06 | |
| CVE-2026-42261 json | Not Provided | 2026-05-08 | 2026-05-11 | |
| CVE-2026-41583 json | Not Provided | 2026-05-08 | 2026-05-08 | |
| CVE-2026-40453 json | Not Provided | 2026-04-27 | 2026-04-28 | |
| CVE-2026-39858 json | Not Provided | 2026-04-30 | 2026-04-30 | |
| CVE-2026-35636 json | Not Provided | 2026-04-09 | 2026-04-13 | |
| CVE-2026-34179 json | In Canonical LXD versions 4.12 through 6.7, the doCertificateUpdate function in lxd/certificates.go does not validate the Typ... | Not Provided | 2026-04-09 | 2026-04-22 |
| CVE-2026-34178 json | In Canonical LXD before 6.8, the backup import path validates project restrictions against backup/index.yaml in the supplied ... | Not Provided | 2026-04-09 | 2026-04-22 |
| CVE-2026-34177 json | Canonical LXD versions 4.12 through 6.7 contain an incomplete denylist in isVMLowLevelOptionForbidden (lxd/project/limits/per... | Not Provided | 2026-04-09 | 2026-04-22 |
| CVE-2026-5774 json | Improper synchronization of the userTokens map in the API server in Canonical Juju 4.0.5, 3.6.20, and 2.9.56 may allow an a... | Not Provided | 2026-04-10 | 2026-04-22 |
| CVE-2026-5412 json | In Juju versions prior to 2.9.57 and 3.6.21, an authorization issue exists in the Controller facade. An authenticated user ca... | Not Provided | 2026-04-10 | 2026-04-30 |
| CVE-2026-4370 json | A vulnerability was identified in Juju from version 3.2.0 until 3.6.19 and from version 4.0 until 4.0.4, where the internal D... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2025-68153 json | Juju is an open source application orchestration engine that enables any application operation on any infrastructure at any s... | Not Provided | 2026-04-03 | 2026-04-21 |
| CVE-2025-68152 json | Juju is an open source application orchestration engine that enables any application operation on any infrastructure at any s... | Not Provided | 2026-04-03 | 2026-04-21 |
| CVE-2025-15480 json | In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during crash reporting. Upon instal... | Not Provided | 2026-04-09 | 2026-04-17 |
| CVE-2025-14551 json | In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. Upon installation failure,... | Not Provided | 2026-04-09 | 2026-04-17 |
| CVE-2024-6387 json | A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead ssh... | Not Provided | 2024-07-01 | 2026-05-12 |
| CVE-2023-45866 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.3 - MEDIUM | 2023-12-08 | 2024-01-05 |
Known software with vulnerabilities from Canonical
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Canonical | Accountsservice | 0.6.14 |
| Application | Canonical | Acpi-support | 0.141 |
| Application | Canonical | Add-apt-repository | 0.92.37.0 |
| Application | Canonical | Apparmor | - |
| Application | Canonical | Apport | 2.19.1-0ubuntu3 |
| Application | Canonical | Apt-xapian-index | 0.11ubuntu1 |
| Application | Canonical | Bazaar | 2.7.0 |
| Application | Canonical | C-kernel | 2019-07-16 |
| Application | Canonical | Checkinstall | 1.6.2 |
| Application | Canonical | Cloud-init | 0.5.0 |
| Application | Canonical | Juju | 1.25.12 |
| Application | Canonical | Libpam-modules | 0.9.7 |
| Application | Canonical | Ltsp Display Manager | 2.2.4 |
| Application | Canonical | Lxcfs | 0.11 |
| Application | Canonical | Metal As A Service | 1.9.0 |
| Application | Canonical | Microk8s | 1.11 |
| Application | Canonical | Php5 | 5.3.2-1ubuntu4.16 |
| Application | Canonical | Ppp | 2.4.2\+20040428-2ubuntu6 |
| Application | Canonical | Reportbug | 6.5.0 |
| Application | Canonical | Screen-resolution-extra | 0.17.2 |