Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
261 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
262 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
263 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
264 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
265 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
266 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
267 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
268 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
269 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
270 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
271 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
272 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
273 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
274 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
275 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
276 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
277 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
278 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
279 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
280 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
281 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
282 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
283 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
284 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
285 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
286 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
287 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
288 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
289 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
290 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
291 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
292 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
293 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
294 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
295 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
261 4.9
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 5.7.30 and prior and 8.0.20 and prior. Easily exploitable vulnerability al… NVD-CWE-noinfo
CVE-2020-14540 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:03
2020-07-16 		Show GitHub Exploit DB Packet Storm
262 6.5
4.0 		MEDIUM
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.6.48 and prior, 5.7.30 and prior and 8.0.20 and prior. Easily expl… NVD-CWE-noinfo
CVE-2020-14539 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:03
2020-07-16 		Show GitHub Exploit DB Packet Storm
263 7.5
5.0 		HIGH
Network 		The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could t… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-13935 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:* 		2024-11-21 14:02
2020-07-15 		Show GitHub Exploit DB Packet Storm
264 7.5
5.0 		HIGH
Network 		An h2c direct connection to Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M5 to 9.0.36 and 8.5.1 to 8.5.56 did not release the HTTP/1.1 processor after the upgrade to HTTP/2. If a sufficient number of … CWE-476
CWE-401
 NULL Pointer Dereference
 Missing Release of Memory after Effective Lifetime 		CVE-2020-13934 cpe:2.3:o:canonical:ubuntu_linux:20.04:* 2024-11-21 14:02
2020-07-15 		Show GitHub Exploit DB Packet Storm
265 10.0
7.5 		CRITICAL
Network 		The bubblewrap sandbox of WebKitGTK and WPE WebKit, prior to 2.28.3, failed to properly block access to CLONE_NEWUSER and the TIOCSTI ioctl. CLONE_NEWUSER could potentially be used to confuse xdg-des… CWE-20
 Improper Input Validation  		CVE-2020-13753 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:01
2020-07-14 		Show GitHub Exploit DB Packet Storm
266 7.5
5.0 		HIGH
Network 		In Lib/tarfile.py in Python through 3.8.3, an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open, because _proc_pax lacks header validation. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-20907 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:39
2020-07-13 		Show GitHub Exploit DB Packet Storm
267 6.5
2.1 		MEDIUM
Local 		An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo reques… CWE-125
Out-of-bounds Read 		CVE-2020-10756 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-07-10 		Show GitHub Exploit DB Packet Storm
268 6.5
4.3 		MEDIUM
Network 		When performing add-on updates, certificate chains terminating in non-built-in-roots were rejected (even if they were legitimately added by an administrator.) This could have caused add-ons to become… CWE-295
Improper Certificate Validation  		CVE-2020-12421 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
269 8.8
9.3 		HIGH
Network 		When trying to connect to a STUN server, a race condition could have caused a use-after-free of a pointer, leading to memory corruption and a potentially exploitable crash. This vulnerability affects… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2020-12420 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
270 8.8
9.3 		HIGH
Network 		When processing callbacks that occurred during window flushing in the parent process, the associated window may die; causing a use-after-free condition. This could have led to memory corruption and a… CWE-416
 Use After Free 		CVE-2020-12419 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm