Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
991 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
992 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
993 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
994 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
995 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
996 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
997 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
998 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
999 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1000 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1001 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1002 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1003 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1004 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1005 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1006 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1007 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1008 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1009 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1010 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1011 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1012 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1013 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1014 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1015 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1016 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1017 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1018 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1019 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1020 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1021 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1022 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1023 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1024 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1025 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
991 9.8
7.5 		CRITICAL
Network 		lavc_CopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height. CWE-125
Out-of-bounds Read 		CVE-2019-13962 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:25
2019-07-19 		Show GitHub Exploit DB Packet Storm
992 7.5
5.0 		HIGH
Network 		In Wireshark 3.0.0 to 3.0.2, 2.6.0 to 2.6.9, and 2.4.0 to 2.4.15, the ASN.1 BER dissector and related dissectors could crash. This was addressed in epan/asn1.c by properly restricting buffer incremen… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-13619 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:25
2019-07-18 		Show GitHub Exploit DB Packet Storm
993 7.8
7.2 		HIGH
Local 		In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obta… NVD-CWE-noinfo
CVE-2019-13272 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:24
2019-07-17 		Show GitHub Exploit DB Packet Storm
994 4.3
4.0 		MEDIUM
Network 		LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who w… NVD-CWE-noinfo
CVE-2019-9849 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:52
2019-07-17 		Show GitHub Exploit DB Packet Storm
995 9.8
7.5 		CRITICAL
Network 		LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLo… CWE-94
Code Injection 		CVE-2019-9848 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:52
2019-07-17 		Show GitHub Exploit DB Packet Storm
996 8.1
5.8 		HIGH
Network 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c. CWE-125
Out-of-bounds Read 		CVE-2019-13616 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:25
2019-07-17 		Show GitHub Exploit DB Packet Storm
997 5.5
4.3 		MEDIUM
Local 		libmspack 0.9.1alpha is affected by: Buffer Overflow. The impact is: Information Disclosure. The component is: function chmd_read_headers() in libmspack(file libmspack/mspack/chmd.c). The attack vect… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-1010305 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:18
2019-07-16 		Show GitHub Exploit DB Packet Storm
998 7.8
6.8 		HIGH
Local 		Evince 3.26.0 is affected by buffer overflow. The impact is: DOS / Possible code execution. The component is: backend/tiff/tiff-document.c. The attack vector is: Victim must open a crafted PDF file. … CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-1010006 cpe:2.3:o:canonical:ubuntu_linux:16.04:* 2024-11-21 13:17
2019-07-15 		Show GitHub Exploit DB Packet Storm
999 7.8
6.8 		HIGH
Local 		An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow a… CWE-787
CWE-191
 Out-of-bounds Write
 Integer Underflow (Wrap or Wraparound) 		CVE-2019-13602 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:25
2019-07-15 		Show GitHub Exploit DB Packet Storm
1000 5.5
4.3 		MEDIUM
Local 		WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseWave64HeaderConfig (wave64.c:2… CWE-908
 Use of Uninitialized Resource 		CVE-2019-1010319 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:18
2019-07-12 		Show GitHub Exploit DB Packet Storm