Software Detail

Software Informaton Top

Operating Systems

Software Detail

Ubuntu

Number Of NVD

4093

CRITICAL

341

HIGH

1595

MEDIUM

1941

LOW

216

URL	https://ubuntu.com/
Explanation	A release without LTS is a normal release and provides support for 9 months after it is released. LTS (Long Term Support) provides support for five years. After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://ubuntu.com/about/release-cycle
2			https://wiki.ubuntu.com/
3			https://wiki.ubuntu.com/Releases
4			https://ubuntu.com/licensing
5			https://ubuntu.com/security/notices

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
1151	Ubuntu 24	24.04.3	Aug. 7, 2025	April 25, 2024			0	0	1	0
1152	Ubuntu 23.04	23.04	April 24, 2023	April 24, 2023	April 30, 2024		1	5	2	0
1153	Ubuntu 22.04 LTS	22.04.5	Sept. 12, 2024	April 21, 2022	April 30, 2027	April 30, 2032	1	25	11	0
1154	Ubuntu 21.10	21.10	Oct. 14, 2021	Oct. 14, 2021	June 14, 2022	June 14, 2022	1	18	19	0
1155	Ubuntu 21.04	21.04	April 22, 2021	April 22, 2021	Jan. 30, 2022		0	12	11	0
1156	Ubuntu 20.10	20.10	Oct. 22, 2020	Oct. 22, 2020	July 30, 2021		0	5	13	1
1157	Ubuntu 20.04 LTS	20.04.6	March 23, 2023	April 23, 2020	April 30, 2025	April 30, 2030	21	144	239	32
1158	Ubuntu 19.10			Oct. 17, 2019	July 30, 2020		32	133	227	44
1159	Ubuntu 19.04			April 18, 2019	Jan. 30, 2020		45	126	184	23
1160	Ubuntu 18.10			Oct. 18, 2018	July 31, 2019		66	174	182	5
1161	Ubuntu 18.04 LTS	18.04.6	Sept. 17, 2021	April 26, 2018	April 30, 2023	April 30, 2028	202	645	891	80
1162	Ubuntu 17.10			Oct. 18, 2017	July 19, 2018		4	18	14	0
1163	Ubuntu 17.04			April 13, 2017	July 20, 2017		4	18	14	0
1164	Ubuntu 16.10			Oct. 13, 2016	July 28, 2016		6	24	8	0
1165	Ubuntu 16.04 LTS	16.04.7	Aug. 13, 2020	April 21, 2016	April 30, 2021	April 30, 2024	239	852	1060	83
1166	Ubuntu 15.10			Oct. 22, 2015	Feb. 4, 2016		20	148	162	24
1167	Ubuntu 15.04			April 23, 2015	July 23, 2015		5	100	130	29
1168	Ubuntu 14.10			Oct. 23, 2014	July 14, 2014		0	3	1	0
1169	Ubuntu 14.04 LTS	14.04.6	March 7, 2019	April 17, 2014	April 30, 2019	April 30, 2022	216	844	1015	82
1170	Ubuntu 13.10			Oct. 17, 2013	July 14, 2014		15	56	68	15
1171	Ubuntu 13.04			April 25, 2013	Jan. 27, 2014		6	16	60	9
1172	Ubuntu 12.04 LTS			April 26, 2012	April 28, 2017	April 30, 2019	90	577	669	83
1173	Ubuntu 11.10			Oct. 13, 2011	May 9, 2013		1	111	108	13
1174	Ubuntu 11.04			April 28, 2011	Oct. 28, 2012		1	56	56	8
1175	Ubuntu 10.10			Oct. 10, 2010	April 10, 2012		2	47	52	17
1176	Ubuntu 9.10			Oct. 29, 2009	April 30, 2011		5	56	56	16
1177	Ubuntu 9.04			April 23, 2009	Oct. 23, 2010		3	46	57	8
1178	Ubuntu 8.10			Oct. 30, 2008	April 30, 2010		2	49	47	6
1179	Ubuntu 8.04 LTS	8.04.4	Jan. 28, 2010	April 24, 2008	May 9, 2013		7	99	119	18
1180	Ubuntu 7.10			Oct. 18, 2007	April 18, 2009		3	48	37	5
1181	Ubuntu 7.04			April 19, 2007	Oct. 19, 2008		4	46	28	4
1182	Ubuntu 6.10			Oct. 26, 2006	April 26, 2008		2	33	32	4
1183	Ubuntu 5.10			Oct. 13, 2005	April 13, 2007		0	22	19	1
1184	Ubuntu 5.04			April 8, 2005	Oct. 31, 2006		0	14	13	2
1185	Ubuntu 4.10			Oct. 20, 2004	April 30, 2006		1	13	8	2

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
1151	6.5 3.3	MEDIUM Adjacent	The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches …	-	CVE-2019-3874	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:42 2019-03-26	Show	GitHub Exploit DB Packet Storm

1152	5.5 4.3	MEDIUM Local	An issue was discovered in Xpdf 4.01.01. There is an FPE in the function PostScriptFunction::exec at Function.cc for the psOpIdiv case.	CWE-369 Divide By Zero	CVE-2019-10018	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:18 2019-03-25	Show	GitHub Exploit DB Packet Storm

1153	9.1 6.4	CRITICAL Network	urllib in Python 2.x through 2.7.16 supports the local_file: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggerin…	CWE-22 Path Traversal	CVE-2019-9948	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:52 2019-03-24	Show	GitHub Exploit DB Packet Storm

1154	7.8 7.2	HIGH Local	rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASH_CMDS, thus allowing the user to execute any command with the permissions of the shell.	CWE-862 Missing Authorization	CVE-2019-9924	cpe:2.3:o:canonical:ubuntu_linux:16.04:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:52 2019-03-22	Show	GitHub Exploit DB Packet Storm

1155	6.5 4.3	MEDIUM Network	PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passin…	CWE-787 Out-of-bounds Write	CVE-2019-9903	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:52 2019-03-22	Show	GitHub Exploit DB Packet Storm

1156	7.8 4.6	HIGH Local	In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow.	CWE-787 Out-of-bounds Write	CVE-2019-6778	cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:47 2019-03-22	Show	GitHub Exploit DB Packet Storm

1157	7.5 5.0	HIGH Network	python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other ciphertext than intended. To perform the attack, the passphrase to gnupg must be controlled by the adversary and …	CWE-20 Improper Input Validation	CVE-2019-6690	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:46 2019-03-22	Show	GitHub Exploit DB Packet Storm

1158	7.8 6.8	HIGH Local	In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.	NVD-CWE-noinfo	CVE-2019-6116	cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:45 2019-03-22	Show	GitHub Exploit DB Packet Storm

1159	5.5 2.1	MEDIUM Local	The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.	NVD-CWE-noinfo	CVE-2019-7222	cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:47 2019-03-22	Show	GitHub Exploit DB Packet Storm

1160	7.8 4.6	HIGH Local	The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.	CWE-416 Use After Free	CVE-2019-7221	cpe:2.3:o:canonical:ubuntu_linux:18.10:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:47 2019-03-22	Show	GitHub Exploit DB Packet Storm