Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
271 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
272 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
273 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
274 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
275 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
276 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
277 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
278 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
279 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
280 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
281 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
282 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
283 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
284 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
285 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
286 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
287 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
288 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
289 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
290 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
291 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
292 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
293 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
294 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
295 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
296 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
297 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
298 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
299 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
300 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
301 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
302 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
303 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
304 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
305 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
271 6.5
4.3 		MEDIUM
Network 		Manipulating individual parts of a URL object could have caused an out-of-bounds read, leaking process memory to malicious JavaScript. This vulnerability affects Firefox ESR < 68.10, Firefox < 78, an… CWE-125
Out-of-bounds Read 		CVE-2020-12418 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
272 8.8
9.3 		HIGH
Network 		Due to confusion about ValueTags on JavaScript Objects, an object may pass through the type barrier, resulting in memory corruption and a potentially exploitable crash. *Note: this issue only affects… CWE-787
CWE-617
CWE-681
 Out-of-bounds Write
 Reachable Assertion
 Incorrect Conversion between Numeric Types 		CVE-2020-12417 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
273 8.8
9.3 		HIGH
Network 		Mozilla developers reported memory safety bugs present in Firefox 76 and Firefox ESR 68.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write 		CVE-2020-12410 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
274 8.8
9.3 		HIGH
Network 		Mozilla Developer Iain Ireland discovered a missing type check during unboxed objects removal, resulting in a crash. We presume that with enough effort that it could be exploited to run arbitrary cod… CWE-345
 Insufficient Verification of Data Authenticity 		CVE-2020-12406 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
275 5.3
2.6 		MEDIUM
Network 		When browsing a malicious page, a race condition in our SharedWorkerService could occur and lead to a potentially exploitable crash. This vulnerability affects Thunderbird < 68.9.0, Firefox < 77, and… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2020-12405 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
276 7.5
4.3 		HIGH
Network 		If Thunderbird is configured to use STARTTLS for an IMAP server, and the server sends a PREAUTH response, then Thunderbird will continue with an unencrypted connection, causing email data to be sent … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2020-12398 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:59
2020-07-10 		Show GitHub Exploit DB Packet Storm
277 6.5
4.0 		MEDIUM
Network 		A use-after-free flaw was found in all samba LDAP server versions before 4.10.17, before 4.11.11, before 4.12.4 used in a AC DC configuration. A Samba LDAP user could use this flaw to crash samba. CWE-416
 Use After Free 		CVE-2020-10760 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-07-7 		Show GitHub Exploit DB Packet Storm
278 7.5
5.0 		HIGH
Network 		A flaw was found in the AD DC NBT server in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4. A samba user could send an empty UDP packet to cause the samba server to crash. CWE-834
 Excessive Iteration 		CVE-2020-14303 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:02
2020-07-7 		Show GitHub Exploit DB Packet Storm
279 8.6
5.0 		HIGH
Network 		A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in… CWE-22
Path Traversal 		CVE-2020-8161 cpe:2.3:o:canonical:ubuntu_linux:18.04:* 2024-11-21 14:38
2020-07-3 		Show GitHub Exploit DB Packet Storm
280 4.4
2.1 		MEDIUM
Local 		NVIDIA Virtual GPU Manager and the guest drivers contain a vulnerability in vGPU plugin, in which there is the potential to execute privileged operations, which may lead to denial of service. This af… NVD-CWE-noinfo
CVE-2020-5973 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:34
2020-07-1 		Show GitHub Exploit DB Packet Storm