Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1141 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1142 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1143 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1144 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1145 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1146 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1147 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1148 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1149 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1150 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1151 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1152 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1153 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1154 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1155 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1156 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1157 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1158 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1159 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1160 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1161 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1162 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1163 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1164 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1165 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1166 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1167 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1168 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1169 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1170 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1171 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1172 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1173 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1174 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1175 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1141 6.5
4.3 		MEDIUM
Network 		A remote denial-of-service vulnerability exists in the way the Nouveau Display Driver (the default Ubuntu Nvidia display driver) handles GPU shader execution. A specially crafted pixel shader can cau… CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-3979 cpe:2.3:o:canonical:ubuntu_linux:18.04:* 2024-11-21 13:06
2019-04-2 		Show GitHub Exploit DB Packet Storm
1142 7.8
7.2 		HIGH
Local 		In the Linux Kernel before versions 4.20.8 and 4.19.21 a use-after-free error in the "sctp_sendmsg()" function (net/sctp/socket.c) when handling SCTP_SENDALL flag can be exploited to corrupt memory. CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2019-8956 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:50
2019-04-2 		Show GitHub Exploit DB Packet Storm
1143 5.5
4.3 		MEDIUM
Local 		In ImageMagick 7.0.8-36 Q16, there is a memory leak in the function SVGKeyValuePairs of coders/svg.c, which allows an attacker to cause a denial of service via a crafted image file. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-10649 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:19
2019-03-30 		Show GitHub Exploit DB Packet Storm
1144 9.8
10.0 		CRITICAL
Network 		BWA (aka Burrow-Wheeler Aligner) before 2019-01-23 has a stack-based buffer overflow in the bns_restore function in bntseq.c via a long sequence name in a .alt file. CWE-787
 Out-of-bounds Write 		CVE-2019-10269 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:18
2019-03-29 		Show GitHub Exploit DB Packet Storm
1145 7.8
7.2 		HIGH
Local 		In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root. This occurs because of missing c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-7524 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:48
2019-03-28 		Show GitHub Exploit DB Packet Storm
1146 7.5
5.0 		HIGH
Network 		A flaw was found in the way civetweb frontend was handling requests for ceph RGW server with SSL enabled. An unauthenticated attacker could create multiple connections to ceph RADOS gateway to exhaus… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2019-3821 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:42
2019-03-27 		Show GitHub Exploit DB Packet Storm
1147 6.8
4.9 		MEDIUM
Network 		It was discovered that Dovecot before versions 2.2.36.1 and 2.3.4.1 incorrectly handled client certificates. A remote attacker in possession of a valid certificate with an empty username field could … CWE-295
Improper Certificate Validation  		CVE-2019-3814 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:42
2019-03-27 		Show GitHub Exploit DB Packet Storm
1148 6.1
4.3 		MEDIUM
Network 		A vulnerability was found in mod_auth_mellon before v0.14.2. An open redirect in the logout URL allows requests with backslashes to pass through by assuming that it is a relative URL, while the brows… CWE-601
Open Redirect 		CVE-2019-3877 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:42
2019-03-27 		Show GitHub Exploit DB Packet Storm
1149 6.5
4.0 		MEDIUM
Network 		ZNC before 1.7.3-rc1 allows an existing remote user to cause a Denial of Service (crash) via invalid encoding. CWE-20
 Improper Input Validation  		CVE-2019-9917 cpe:2.3:o:canonical:ubuntu_linux:18.10:* 2024-11-21 13:52
2019-03-27 		Show GitHub Exploit DB Packet Storm
1150 8.1
6.8 		HIGH
Network 		A vulnerability was found in mod_auth_mellon before v0.14.2. If Apache is configured as a reverse proxy and mod_auth_mellon is configured to only let through authenticated users (with the require val… CWE-287
Improper Authentication 		CVE-2019-3878 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:42
2019-03-27 		Show GitHub Exploit DB Packet Storm