ADSys is released as a Debian package on the Ubuntu archive. We currently
provide security updates for ADSys installed on the following Ubuntu LTS
releases:
- Ubuntu 24.04
- Ubuntu 22.04
- Ubuntu 20.04
Please ensure that you are using a supported version to receive updates and patches.
If you are unsure of your version, please run the following command in a terminal:
adsysctl version
If you discover a security vulnerability within this repository, we encourage
responsible disclosure. Please report any security issues to help us keep
ADSys secure for everyone.
The most straightforward way to report a security vulnerability is via
GitHub. For detailed
instructions, please review the
Privately reporting a security vulnerability
documentation. This method enables you to communicate vulnerabilities directly
and confidentially with the ADSys maintainers.
The project's admins will be notified of the issue and will work with you to determine whether the issue qualifies as a security issue and, if so, in which component. We will then handle finding a fix, getting a CVE assigned and coordinating the release of the fix to the various Linux distributions.
The Ubuntu Security disclosure and embargo policy contains more information about what you can expect when you contact us, and what we expect from you.
Note, that you can also use this Launchpad bug tracker to privately report a security vulnerability.
- Go to the Security Advisories Page of the
ADSysrepository. - Click "Report a Vulnerability."
- Provide detailed information about the vulnerability, including steps to reproduce, affected versions, and potential impact.
- Canonical's Security Site
- Ubuntu Security disclosure and embargo policy
- Ubuntu Security Notices
- ADSys Documentation
If you have any questions regarding security vulnerabilities, please reach out to the maintainers via the aforementioned channels.