Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
1411 Ubuntu 26.04 LTS 26.04 April 23, 2026 April 23, 2026 0 0 0 0
1412 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
1413 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
1414 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
1415 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
1416 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
1417 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
1418 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
1419 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
1420 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
1421 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
1422 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
1423 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
1424 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
1425 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
1426 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
1427 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
1428 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
1429 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
1430 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
1431 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
1432 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
1433 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
1434 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
1435 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
1436 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
1437 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
1438 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
1439 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
1440 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
1441 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
1442 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
1443 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
1444 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
1445 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
1446 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
1411 7.8
4.6
HIGH
Local
In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_pro… CWE-416
 Use After Free
CVE-2018-19824 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:58
2018-12-4
Show GitHub Exploit DB Packet Storm
1412 8.8
9.0
HIGH
Network
A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user with a uid greater than INT_MAX to successfully execute any systemctl command. CWE-20
 Improper Input Validation 
CVE-2018-19788 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:58
2018-12-3
Show GitHub Exploit DB Packet Storm
1413 6.1
4.3
MEDIUM
Network
An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, a… CWE-79
Cross-site Scripting
CVE-2018-19787 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:58
2018-12-2
Show GitHub Exploit DB Packet Storm
1414 7.5
5.0
HIGH
Network
FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault). CWE-125
Out-of-bounds Read
CVE-2018-8789 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:14
2018-11-30
Show GitHub Exploit DB Packet Storm
1415 9.8
7.5
CRITICAL
Network
FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution. CWE-787
 Out-of-bounds Write
CVE-2018-8788 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:14
2018-11-30
Show GitHub Exploit DB Packet Storm
1416 9.8
7.5
CRITICAL
Network
FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_Decompress() and results in a memory corruption and probably even a r… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound
CVE-2018-8787 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:14
2018-11-30
Show GitHub Exploit DB Packet Storm
1417 9.8
7.5
CRITICAL
Network
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution. CWE-787
 Out-of-bounds Write
CVE-2018-8785 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
2024-11-21 13:14
2018-11-30
Show GitHub Exploit DB Packet Storm
1418 9.8
7.5
CRITICAL
Network
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution. CWE-787
 Out-of-bounds Write
CVE-2018-8784 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
2024-11-21 13:14
2018-11-30
Show GitHub Exploit DB Packet Storm
1419 9.8
7.5
CRITICAL
Network
FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_read_bitmap_update() and results in a memory corruption and probably ev… CWE-787
CWE-681
 Out-of-bounds Write
 Incorrect Conversion between Numeric Types
CVE-2018-8786 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 13:14
2018-11-30
Show GitHub Exploit DB Packet Storm
1420 6.5
4.0
MEDIUM
Network
Samba from version 4.0.0 and before versions 4.7.12, 4.8.7, 4.9.3 is vulnerable to a denial of service. During the processing of an LDAP search before Samba's AD DC returns the LDAP entries to the cl… CWE-476
 NULL Pointer Dereference
CVE-2018-16851 cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 12:53
2018-11-28
Show GitHub Exploit DB Packet Storm