Ubuntu USN Security Dashboard
Canonical USN advisories across every current Ubuntu LTS release β explore risk, support lifecycle / expirations and affected dependencies. All processing is local.
Search
Coverage
Release
Severity
Attack vector
OVAL coverage β every file & scope
All published Canonical OVAL documents in this directory, across three scopes β USN advisories, CVE per-CVE assessments and PKG per-package exposure β for every release and product line (Archive, OCI images, FIPS, Realtime, Bluefield).
Coverage matrix
Product line Γ release β which scopes are published, and CVE volume (cell tint).
What's inside
OVAL definitions by scope and by product line.
All OVAL files
Filter by scope, product base and variant; sort any column.
Release lifecycle & support expirations
Standard LTS support β Expanded Security Maintenance (ESM, via Ubuntu Pro). Bar accent width below each row = advisory volume. The dashed line marks today.
Advisories over time
USNs by month, stacked by severity. Toggle severities in the legend.
Severity by release
Share of advisories at each severity.
Risk profile (CVSS)
Worst CVSS score per advisory.
Attack vector
How the worst CVE is reached.
Coverage: LTS vs ESM
Free fixes vs. Ubuntu Pro.
Most-patched components
Top dependencies by advisory count in the current selection.
Shared CVE exposure
How many LTS releases each fixed CVE spans β wider = broader fleet risk.
Advisories
Sortable. Select a USN to open the notice on ubuntu.com.
Built from Canonical's published USN OVAL data (MITRE OVAL 5.11.1). Severity is Canonical's advisory rating; CVSS is the v3 base score of the most severe CVE per advisory. βESMβ fixes are delivered through Ubuntu Pro. Lifecycle dates follow Canonical's LTS / ESM schedule; 26.04 dates are projected. Interface built with the Vanilla framework.