Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1251 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1252 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1253 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1254 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1255 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1256 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1257 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1258 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1259 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1260 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1261 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1262 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1263 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1264 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1265 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1266 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1267 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1268 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1269 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1270 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1271 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1272 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1273 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1274 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1275 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1276 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1277 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1278 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1279 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1280 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1281 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1282 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1283 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1284 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1285 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1251 7.8
6.8 		HIGH
Local 		In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking. CWE-787
 Out-of-bounds Write 		CVE-2018-20763 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-02-7 		Show GitHub Exploit DB Packet Storm
1252 7.8
6.8 		HIGH
Local 		GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-20762 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-02-7 		Show GitHub Exploit DB Packet Storm
1253 7.8
6.8 		HIGH
Local 		GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2018-20761 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-02-7 		Show GitHub Exploit DB Packet Storm
1254 7.8
6.8 		HIGH
Local 		In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled. CWE-787
 Out-of-bounds Write 		CVE-2018-20760 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-02-7 		Show GitHub Exploit DB Packet Storm
1255 6.4
6.9 		MEDIUM
Physics 		A vulnerability was discovered in gdm before 3.31.4. When timed login is enabled in configuration, an attacker could bypass the lock screen by selecting the timed login user and waiting for the timer… CWE-287
Improper Authentication 		CVE-2019-3825 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:42
2019-02-7 		Show GitHub Exploit DB Packet Storm
1256 7.5
5.0 		HIGH
Network 		libcurl versions from 7.34.0 to before 7.64.0 are vulnerable to a heap out-of-bounds read in the code handling the end-of-response for SMTP. If the buffer passed to `smtp_endofresp()` isn't NUL termi… - CVE-2019-3823 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:42
2019-02-7 		Show GitHub Exploit DB Packet Storm
1257 4.3
4.6 		MEDIUM
Physics 		It was discovered that the gnome-shell lock screen since version 3.15.91 did not properly restrict all contextual actions. An attacker with physical access to a locked workstation could invoke certai… CWE-287
Improper Authentication 		CVE-2019-3820 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:42
2019-02-7 		Show GitHub Exploit DB Packet Storm
1258 9.8
7.5 		CRITICAL
Network 		libcurl versions from 7.36.0 to before 7.64.0 are vulnerable to a stack-based buffer overflow. The function creating an outgoing NTLM type-3 header (`lib/vauth/ntlm.c:Curl_auth_create_ntlm_type3_mess… CWE-787
 Out-of-bounds Write 		CVE-2019-3822 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:42
2019-02-7 		Show GitHub Exploit DB Packet Storm
1259 7.5
5.0 		HIGH
Network 		libcurl versions from 7.36.0 to before 7.64.0 is vulnerable to a heap buffer out-of-bounds read. The function handling incoming NTLM type-2 messages (`lib/vauth/ntlm.c:ntlm_decode_type2_target`) does… CWE-125
CWE-190
Out-of-bounds Read
 Integer Overflow or Wraparound 		CVE-2018-16890 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 12:53
2019-02-7 		Show GitHub Exploit DB Packet Storm
1260 9.8
7.5 		CRITICAL
Network 		Insufficient sanitization of environment variables passed to rsync can bypass the restrictions imposed by rssh, a restricted shell that should restrict users to perform only rsync operations, resulti… CWE-665
 Improper Initialization 		CVE-2019-3464 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:42
2019-02-7 		Show GitHub Exploit DB Packet Storm