Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1031 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1032 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1033 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1034 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1035 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1036 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1037 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1038 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1039 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1040 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1041 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1042 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1043 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1044 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1045 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1046 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1047 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1048 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1049 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1050 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1051 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1052 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1053 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1054 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1055 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1056 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1057 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1058 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1059 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1060 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1061 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1062 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1063 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1064 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1065 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1031 5.3
5.0 		MEDIUM
Network 		In numbers.c in libxslt 1.1.33, a type holding grouping characters of an xsl:number instruction was too narrow and an invalid character/length combination could be passed to xsltNumberFormatDecimal, … CWE-843
Type Confusion 		CVE-2019-13118 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:24
2019-07-1 		Show GitHub Exploit DB Packet Storm
1032 6.5
4.3 		MEDIUM
Network 		http.c in Exiv2 through 0.27.1 allows a malicious http server to cause a denial of service (crash due to a NULL pointer dereference) by returning a crafted response that lacks a space character. CWE-476
 NULL Pointer Dereference 		CVE-2019-13114 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:24
2019-07-1 		Show GitHub Exploit DB Packet Storm
1033 6.5
4.3 		MEDIUM
Network 		Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to assertion failure) via an invalid data location in a CRW image file. CWE-617
 Reachable Assertion 		CVE-2019-13113 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:24
2019-07-1 		Show GitHub Exploit DB Packet Storm
1034 6.5
4.3 		MEDIUM
Network 		A PngChunk::parseChunkContent uncontrolled memory allocation in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (crash due to an std::bad_alloc exception) via a crafted PNG image… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-13112 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:24
2019-07-1 		Show GitHub Exploit DB Packet Storm
1035 6.5
4.3 		MEDIUM
Network 		A CiffDirectory::readDirectory integer overflow and out-of-bounds read in Exiv2 through 0.27.1 allows an attacker to cause a denial of service (SIGSEGV) via a crafted CRW image file. CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2019-13110 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:24
2019-07-1 		Show GitHub Exploit DB Packet Storm
1036 6.1
4.3 		MEDIUM
Network 		mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL. CWE-601
Open Redirect 		CVE-2019-13038 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:24
2019-06-29 		Show GitHub Exploit DB Packet Storm
1037 8.8
6.8 		HIGH
Network 		Integer overflow in SQLite via WebSQL in Google Chrome prior to 74.0.3729.131 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-5827 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:45
2019-06-28 		Show GitHub Exploit DB Packet Storm
1038 8.8
6.8 		HIGH
Network 		Incorect derivation of a packet length in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted video file. CWE-787
 Out-of-bounds Write 		CVE-2018-6156 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:10
2019-06-28 		Show GitHub Exploit DB Packet Storm
1039 7.8
6.8 		HIGH
Local 		ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c. CWE-665
 Improper Initialization 		CVE-2019-12979 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:23
2019-06-27 		Show GitHub Exploit DB Packet Storm
1040 5.5
4.3 		MEDIUM
Local 		ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-12976 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:23
2019-06-27 		Show GitHub Exploit DB Packet Storm