Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1161 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1162 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1163 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1164 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1165 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1166 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1167 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1168 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1169 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1170 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1171 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1172 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1173 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1174 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1175 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1176 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1177 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1178 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1179 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1180 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1181 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1182 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1183 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1184 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1185 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1186 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1187 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1188 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1189 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1190 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1191 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1192 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1193 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1194 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1195 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1161 5.5
4.9 		MEDIUM
Local 		An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming … CWE-787
 Out-of-bounds Write 		CVE-2019-6454 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:46
2019-03-22 		Show GitHub Exploit DB Packet Storm
1162 5.5
1.9 		MEDIUM
Local 		It was discovered the fix for CVE-2018-19758 (libsndfile) was not complete and still allows a read beyond the limits of a buffer in wav_write_header() function in wav.c. A local attacker may use this… CWE-125
Out-of-bounds Read 		CVE-2019-3832 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:42
2019-03-22 		Show GitHub Exploit DB Packet Storm
1163 7.8
7.2 		HIGH
Local 		An issue where a provided address with access_ok() is not checked was discovered in i915_gem_execbuffer2_ioctl in drivers/gpu/drm/i915/i915_gem_execbuffer.c in the Linux kernel through 4.19.13. A loc… CWE-20
 Improper Input Validation  		CVE-2018-20669 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:01
2019-03-22 		Show GitHub Exploit DB Packet Storm
1164 7.5
5.0 		HIGH
Network 		An out-of-bounds read issue was discovered in the HTTP/2 protocol decoder in HAProxy 1.8.x and 1.9.x through 1.9.0 which can result in a crash. The processing of the PRIORITY flag in a HEADERS frame … CWE-125
Out-of-bounds Read 		CVE-2018-20615 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:01
2019-03-22 		Show GitHub Exploit DB Packet Storm
1165 7.5
5.0 		HIGH
Network 		The email-ingestion feature in Best Practical Request Tracker 4.1.13 through 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing. CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-18898 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:* 		2024-11-21 12:56
2019-03-22 		Show GitHub Exploit DB Packet Storm
1166 5.5
2.1 		MEDIUM
Local 		In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by triggering an invalid msg_len value. CWE-125
Out-of-bounds Read 		CVE-2018-18849 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 12:56
2019-03-22 		Show GitHub Exploit DB Packet Storm
1167 6.5
4.3 		MEDIUM
Network 		A denial of service in the subtitle decoder in FFmpeg 3.2 and 4.1 allows attackers to hog the CPU via a crafted video file in Matroska format, because handle_open_brace in libavcodec/htmlsubtitles.c … CWE-125
Out-of-bounds Read 		CVE-2019-9721 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:52
2019-03-12 		Show GitHub Exploit DB Packet Storm
1168 6.5
4.3 		MEDIUM
Network 		In FFmpeg 3.2 and 4.1, a denial of service in the subtitle decoder allows attackers to hog the CPU via a crafted video file in Matroska format, because ff_htmlmarkup_to_ass in libavcodec/htmlsubtitle… CWE-125
Out-of-bounds Read 		CVE-2019-9718 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:52
2019-03-12 		Show GitHub Exploit DB Packet Storm
1169 8.1
6.8 		HIGH
Network 		An issue was discovered in PHP 7.x before 7.1.27 and 7.3.x before 7.3.3. phar_tar_writeheaders_int in ext/phar/tar.c has a buffer overflow via a long link value. NOTE: The vendor indicates that the l… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-9675 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 13:52
2019-03-11 		Show GitHub Exploit DB Packet Storm
1170 8.8
6.8 		HIGH
Network 		An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofx_sgml.cpp, as demonstrated by ofxdump. CWE-476
 NULL Pointer Dereference 		CVE-2019-9656 cpe:2.3:o:canonical:ubuntu_linux:16.04:* 2024-11-21 13:52
2019-03-11 		Show GitHub Exploit DB Packet Storm