A new release of the Ubuntu Cloud Images for stable Ubuntu release 22.04 (Jammy Jellyfish) is available at [1]. These new images superseded the existing images [2]. Images are available for download or immediate use on EC2 via publish AMI ids. Users who wish to update their existing installations can do so with:
   'sudo apt-get update && sudo apt-get dist-upgrade && sudo reboot'.

The following packages have been updated. Please see the full changelogs
for a complete listing of changes:
 * git: 1:2.34.1-1ubuntu1.2 => 1:2.34.1-1ubuntu1.4 
 * python3.10: 3.10.4-3 => 3.10.4-3ubuntu0.1 


The following is a complete changelog for this image.
new: {}
removed: {}
changed: ['git', 'git-man', 'libpython3.10-minimal:amd64', 'libpython3.10-stdlib:amd64', 'libpython3.10:amd64', 'python3.10', 'python3.10-minimal']
new snaps: {}
removed snaps: {}
changed snaps: []
==== git: 1:2.34.1-1ubuntu1.2 => 1:2.34.1-1ubuntu1.4 ====
====     git git-man
  * SECURITY UPDATE: Potential arbitrary code execution
    - debian/patches/CVE-2022-29187-1.patch: adds test to
      regression git needs safe.directory when using sudo in
      t/t0034-root-safe-directory.sh.
    - debian/patches/CVE-2022-29187-2.patch: avoid failing dir ownership
      checks if running privileged in git-compat-util.h,
      t/t0034-root-safe-directory.sh.
    - debian/patches/CVE-2022-29187-3.patch: add negative tests
      and allow git init to mostly work under sudo in
      t/lib-sudo.sh b/t/lib-sudo.sh.
    - debian/patches/CVE-2022-29187-4.patch: allow root
      to access both SUDO_UID and root owned in git-compat-util.h,
      t/t0034-root-safe-directory.sh.
    - debian/patches/CVE-2022-29187-5.patch: add tests for safe.directory
      in t/t0033-safe-directory.sh, setup.c.
    - debian/patches/CVE-2022-29187-6.patch: tighten ownership checks
      post CVE-2022-24765 in setup.c.
    - CVE-2022-29187
==== python3.10: 3.10.4-3 => 3.10.4-3ubuntu0.1 ====
====     libpython3.10-minimal:amd64 libpython3.10-stdlib:amd64 libpython3.10:amd64 python3.10 python3.10-minimal
  * SECURITY UPDATE: Injection Attack
    - debian/patches/CVE-2015-20107.patch: Make mailcap refuse to match unsafe
      filenames/types/param in Lib/mailcap.py, Lib/test/test_mailcap.py.
    - CVE-2015-20107

--
[1] http://cloud-images.ubuntu.com/releases/jammy/release-20220718/
[2] http://cloud-images.ubuntu.com/releases/jammy/release-20220712/