Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
2881 Ubuntu 26.04 LTS 26.04 April 23, 2026 April 23, 2026 0 0 0 0
2882 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
2883 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
2884 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
2885 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
2886 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
2887 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
2888 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
2889 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
2890 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
2891 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
2892 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
2893 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
2894 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
2895 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
2896 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
2897 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
2898 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
2899 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
2900 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
2901 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
2902 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
2903 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
2904 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
2905 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
2906 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
2907 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
2908 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
2909 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
2910 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
2911 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
2912 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
2913 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
2914 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
2915 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
2916 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
2881 -
6.8
MEDIUM Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (ak… CWE-20
 Improper Input Validation 
CVE-2015-1337 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
2024-11-21 11:25
2015-10-9
Show GitHub Exploit DB Packet Storm
2882 7.5
5.0
HIGH
Network
Use-after-free vulnerability in xprt_set_caller in rpcb_svc_com.c in rpcbind 0.2.1 and earlier allows remote attackers to cause a denial of service (daemon crash) via crafted packets, involving a PMA… NVD-CWE-Other
CVE-2015-7236 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:36
2015-10-2
Show GitHub Exploit DB Packet Storm
2883 -
7.2
HIGH kernel_crashdump in Apport before 2.19 allows local users to cause a denial of service (disk consumption) or possibly gain privileges via a (1) symlink or (2) hard link attack on /var/crash/vmcore.lo… CWE-59
Link Following
CVE-2015-1338 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:25
2015-10-2
Show GitHub Exploit DB Packet Storm
2884 -
7.2
HIGH lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container administrators to escape AppArmor confinement via a symlink attack on a (1) mount target or (2) bind mount source. CWE-59
Link Following
CVE-2015-1335 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
2024-11-21 11:25
2015-10-2
Show GitHub Exploit DB Packet Storm
2885 -
6.8
MEDIUM Buffer overflow in the gethostbyname_r and other unspecified NSS functions in the GNU C Library (aka glibc or libc6) before 2.22 allows context-dependent attackers to cause a denial of service (crash… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-1781 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:26
2015-09-29
Show GitHub Exploit DB Packet Storm
2886 -
2.1
LOW The Unity Settings Daemon before 14.04.0+14.04.20150825-0ubuntu2 and 15.04.x before 15.04.1+15.04.20150408-0ubuntu1.2 does not properly detect if the screen is locked, which allows physically proxima… CWE-20
 Improper Input Validation 
CVE-2015-1319 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
2024-11-21 11:25
2015-09-18
Show GitHub Exploit DB Packet Storm
2887 -
5.0
MEDIUM The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (infinite loop) via a "broken number-with-base" in a Postscript stream, as … CWE-399
 Resource Management Errors
CVE-2014-9745 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:21
2015-09-15
Show GitHub Exploit DB Packet Storm
2888 -
6.3
MEDIUM The trace functionality in libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to write to arbitrary files via unspecified vectors. NVD-CWE-noinfo
CVE-2015-5200 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:32
2015-09-9
Show GitHub Exploit DB Packet Storm
2889 -
7.2
HIGH Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows local users to gain privileges via the VDPAU_DRIVER environment variable. CWE-22
Path Traversal
CVE-2015-5199 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:32
2015-09-9
Show GitHub Exploit DB Packet Storm
2890 -
7.2
HIGH libvdpau before 1.1.1, when used in a setuid or setgid application, allows local users to gain privileges via unspecified vectors, related to the VDPAU_DRIVER_PATH environment variable. CWE-264
Permissions, Privileges, and Access Controls
CVE-2015-5198 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:32
2015-09-9
Show GitHub Exploit DB Packet Storm