Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
1381 Ubuntu 26.04 LTS 26.04 April 23, 2026 April 23, 2026 0 0 0 0
1382 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1383 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1384 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1385 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1386 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1387 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1388 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1389 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1390 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1391 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1392 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1393 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1394 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1395 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1396 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1397 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1398 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1399 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1400 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1401 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1402 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1403 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1404 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1405 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1406 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1407 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1408 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1409 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1410 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1411 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1412 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1413 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1414 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1415 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1416 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
1381 5.3
3.5
MEDIUM
Network
A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn't consider that the… - CVE-2018-16872 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:53
2018-12-14
Show GitHub Exploit DB Packet Storm
1382 4.7
1.9
MEDIUM
Local
v9fs_wstat in hw/9pfs/9p.c in QEMU allows guest OS users to cause a denial of service (crash) because of a race condition during file renaming. CWE-362
Race Condition
CVE-2018-19489 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:58
2018-12-14
Show GitHub Exploit DB Packet Storm
1383 5.5
2.1
MEDIUM
Local
hw/9pfs/cofile.c and hw/9pfs/9p.c in QEMU can modify an fid path while it is being accessed by a second thread, leading to (for example) a use-after-free outcome. CWE-416
 Use After Free
CVE-2018-19364 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:57
2018-12-14
Show GitHub Exploit DB Packet Storm
1384 7.5
5.0
HIGH
Network
An issue was discovered in dns.c in HAProxy through 1.8.14. In the case of a compressed pointer, a crafted packet can trigger infinite recursion by making the pointer point to itself, or create a lon… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop')
CVE-2018-20103 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:00
2018-12-13
Show GitHub Exploit DB Packet Storm
1385 7.5
5.0
HIGH
Network
An out-of-bounds read in dns_validate_dns_response in dns.c was discovered in HAProxy through 1.8.14. Due to a missing check when validating DNS responses, remote attackers might be able read the 16 … CWE-125
Out-of-bounds Read
CVE-2018-20102 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:00
2018-12-13
Show GitHub Exploit DB Packet Storm
1386 7.8
4.4
HIGH
Local
A flaw was found in qemu Media Transfer Protocol (MTP) before version 3.1.0. A path traversal in the in usb_mtp_write_data function in hw/usb/dev-mtp.c due to an improper filename sanitization. When … CWE-362
Race Condition
CVE-2018-16867 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:53
2018-12-12
Show GitHub Exploit DB Packet Storm
1387 5.5
2.1
MEDIUM
Local
The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as demonstrated by allowing local users to write data into holes in a tmpfs… CWE-863
 Incorrect Authorization
CVE-2018-18397 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:55
2018-12-12
Show GitHub Exploit DB Packet Storm
1388 8.8
6.8
HIGH
Network
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
CWE-190
CWE-416
 Out-of-bounds Write
 Integer Overflow or Wraparound
 Use After Free
CVE-2018-18356 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:55
2018-12-12
Show GitHub Exploit DB Packet Storm
1389 7.8
7.2
HIGH
Local
In nfc_llcp_build_sdreq_tlv of llcp_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privilege… CWE-787
 Out-of-bounds Write
CVE-2018-9518 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*
2024-11-21 13:15
2018-12-8
Show GitHub Exploit DB Packet Storm
1390 6.5
7.1
MEDIUM
Network
An integer overflow error within the "identify()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.12 can be exploited to trigger a division by zero via specially crafted NOKIARA… CWE-190
 Integer Overflow or Wraparound
CVE-2018-5816 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:09
2018-12-8
Show GitHub Exploit DB Packet Storm