Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1221 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1222 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1223 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1224 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1225 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1226 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1227 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1228 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1229 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1230 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1231 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1232 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1233 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1234 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1235 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1236 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1237 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1238 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1239 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1240 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1241 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1242 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1243 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1244 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1245 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1246 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1247 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1248 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1249 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1250 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1251 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1252 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1253 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1254 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1255 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1221 9.8
7.5 		CRITICAL
Network 		An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow a… CWE-125
Out-of-bounds Read 		CVE-2019-9021 cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-23 		Show GitHub Exploit DB Packet Storm
1222 9.8
7.5 		CRITICAL
Network 		An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Invalid input to the function xmlrpc_decode() can lead to an invalid memory access (heap … CWE-125
CWE-416
Out-of-bounds Read
 Use After Free 		CVE-2019-9020 cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-23 		Show GitHub Exploit DB Packet Storm
1223 7.5
7.8 		HIGH
Network 		In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by … CWE-416
 Use After Free 		CVE-2019-9003 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:50
2019-02-23 		Show GitHub Exploit DB Packet Storm
1224 9.8
7.5 		CRITICAL
Network 		In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfs_rq's, which allows attackers to cause a denial of service (infinite loop in update_blocked_averages) or possibly have unspec… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2018-20784 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-02-23 		Show GitHub Exploit DB Packet Storm
1225 7.5
7.8 		HIGH
Network 		A memory leak in the kernel_read_file function in fs/exec.c in the Linux kernel through 4.20.11 allows attackers to cause a denial of service (memory consumption) by triggering vfs_read failures. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-8980 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-21 		Show GitHub Exploit DB Packet Storm
1226 5.5
2.1 		MEDIUM
Local 		QEMU, through version 2.10 and through version 3.1.0, is vulnerable to an out-of-bounds read of up to 128 bytes in the hw/i2c/i2c-ddc.c:i2c_ddc() function. A local attacker with permission to execute… - CVE-2019-3812 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:42
2019-02-19 		Show GitHub Exploit DB Packet Storm
1227 7.8
7.2 		HIGH
Local 		In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr. CWE-416
 Use After Free 		CVE-2019-8912 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-19 		Show GitHub Exploit DB Packet Storm
1228 8.8
6.8 		HIGH
Network 		do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact. CWE-787
 Out-of-bounds Write 		CVE-2019-8907 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-19 		Show GitHub Exploit DB Packet Storm
1229 4.4
3.6 		MEDIUM
Local 		do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused. CWE-125
Out-of-bounds Read 		CVE-2019-8906 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-19 		Show GitHub Exploit DB Packet Storm
1230 4.4
3.6 		MEDIUM
Local 		do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360. CWE-125
Out-of-bounds Read 		CVE-2019-8905 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:50
2019-02-19 		Show GitHub Exploit DB Packet Storm