Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1281 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1282 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1283 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1284 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1285 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1286 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1287 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1288 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1289 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1290 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1291 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1292 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1293 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1294 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1295 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1296 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1297 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1298 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1299 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1300 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1301 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1302 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1303 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1304 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1305 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1306 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1307 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1308 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1309 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1310 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1311 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1312 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1313 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1314 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1315 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1281 5.9
5.8 		MEDIUM
Network 		An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only perf… CWE-22
Path Traversal 		CVE-2019-6111 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:45
2019-02-1 		Show GitHub Exploit DB Packet Storm
1282 6.8
4.0 		MEDIUM
Network 		An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2019-6109 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:45
2019-02-1 		Show GitHub Exploit DB Packet Storm
1283 7.8
4.6 		HIGH
Local 		When loading a document with Apache Open Office 4.1.5 and earlier with smaller end line termination than the operating system uses, the defect occurs. In this case OpenOffice runs into an Arithmetic … CWE-682
 Incorrect Calculation 		CVE-2018-11790 cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 12:44
2019-02-1 		Show GitHub Exploit DB Packet Storm
1284 5.5
4.9 		MEDIUM
Local 		In change_port_settings in drivers/usb/serial/io_ti.c in the Linux kernel before 4.11.3, local users could cause a denial of service by division-by-zero in the serial device layer by trying to set ve… CWE-369
 Divide By Zero 		CVE-2017-18360 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 12:19
2019-01-31 		Show GitHub Exploit DB Packet Storm
1285 7.5
5.0 		HIGH
Network 		In Apache HTTP Server 2.4 release 2.4.37 and prior, mod_session checks the session expiry time before decoding the session. This causes session expiry time to be ignored for mod_session_cookie sessio… CWE-384
 Session Fixation 		CVE-2018-17199 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 12:54
2019-01-31 		Show GitHub Exploit DB Packet Storm
1286 5.3
5.0 		MEDIUM
Network 		In Apache HTTP server versions 2.4.37 and prior, by sending request bodies in a slow loris way to plain resources, the h2 stream for that request unnecessarily occupied a server thread cleaning up th… CWE-400
 Uncontrolled Resource Consumption 		CVE-2018-17189 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 12:54
2019-01-31 		Show GitHub Exploit DB Packet Storm
1287 9.8
7.5 		CRITICAL
Network 		LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete. CWE-787
 Out-of-bounds Write 		CVE-2018-20750 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-01-31 		Show GitHub Exploit DB Packet Storm
1288 9.8
7.5 		CRITICAL
Network 		LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete. CWE-787
 Out-of-bounds Write 		CVE-2018-20749 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-01-31 		Show GitHub Exploit DB Packet Storm
1289 9.8
7.5 		CRITICAL
Network 		LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient/rfbproto.c. The fix for CVE-2018-20019 was incomplete. CWE-787
 Out-of-bounds Write 		CVE-2018-20748 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:02
2019-01-31 		Show GitHub Exploit DB Packet Storm
1290 7.0
6.9 		HIGH
Local 		A flaw was found in the Linux kernel's handle_rx() function in the [vhost_net] driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds write in a kmalloc-8 slab on … CWE-787
 Out-of-bounds Write 		CVE-2018-16880 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 12:53
2019-01-30 		Show GitHub Exploit DB Packet Storm