Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux

Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
2891 Ubuntu 26.04 LTS 26.04 April 23, 2026 April 23, 2026 0 0 0 0
2892 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
2893 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
2894 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
2895 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
2896 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
2897 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
2898 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
2899 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
2900 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
2901 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
2902 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
2903 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
2904 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
2905 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
2906 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
2907 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
2908 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
2909 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
2910 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
2911 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
2912 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
2913 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
2914 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
2915 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
2916 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
2917 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
2918 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
2919 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
2920 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
2921 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
2922 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
2923 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
2924 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
2925 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
2926 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
2891 -
7.5
HIGH The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does not initialize certain structure members, which allows remote attackers to cause a denial of service (inv… CWE-20
 Improper Input Validation 
CVE-2015-6826 cpe:2.3:o:canonical:ubuntu_linux:12.04:* 2024-11-21 11:35
2015-09-6
Show GitHub Exploit DB Packet Storm
2892 -
7.5
HIGH The sws_init_context function in libswscale/utils.c in FFmpeg before 2.7.2 does not initialize certain pixbuf data structures, which allows remote attackers to cause a denial of service (segmentation… CWE-20
 Improper Input Validation 
CVE-2015-6824 cpe:2.3:o:canonical:ubuntu_linux:12.04:* 2024-11-21 11:35
2015-09-6
Show GitHub Exploit DB Packet Storm
2893 -
7.5
HIGH The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does not check for a matching AAC frame syntax element before proceeding with Spectral Band Replication calculations, which all… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2015-6820 cpe:2.3:o:canonical:ubuntu_linux:12.04:* 2024-11-21 11:35
2015-09-6
Show GitHub Exploit DB Packet Storm
2894 -
7.5
HIGH The decode_ihdr_chunk function in libavcodec/pngdec.c in FFmpeg before 2.7.2 does not enforce uniqueness of the IHDR (aka image header) chunk in a PNG image, which allows remote attackers to cause a … CWE-17
Code
CVE-2015-6818 cpe:2.3:o:canonical:ubuntu_linux:12.04:* 2024-11-21 11:35
2015-09-6
Show GitHub Exploit DB Packet Storm
2895 -
7.5
HIGH Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted CRL distribution … NVD-CWE-Other
CVE-2015-3308 cpe:2.3:o:canonical:ubuntu_linux:15.04:* 2024-11-21 11:29
2015-09-2
Show GitHub Exploit DB Packet Storm
2896 -
5.0
MEDIUM The Special:DeletedContributions page in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to determine if an IP is autoblocked via the "Change block" t… CWE-200
Information Exposure
CVE-2015-6727 cpe:2.3:o:canonical:ubuntu_linux:15.04:* 2024-11-21 11:35
2015-09-1
Show GitHub Exploit DB Packet Storm
2897 -
4.6
MEDIUM Use-after-free vulnerability in the path_openat function in fs/namei.c in the Linux kernel 3.x and 4.x before 4.0.4 allows local users to cause a denial of service or possibly have unspecified other … CWE-416
 Use After Free
CVE-2015-5706 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*
2024-11-21 11:33
2015-08-31
Show GitHub Exploit DB Packet Storm
2898 -
7.8
HIGH The (1) udp_recvmsg and (2) udpv6_recvmsg functions in the Linux kernel before 4.0.6 do not properly consider yielding a processor, which allows remote attackers to cause a denial of service (system … CWE-399
 Resource Management Errors
CVE-2015-5364 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:32
2015-08-31
Show GitHub Exploit DB Packet Storm
2899 -
5.0
MEDIUM The (1) contrib.sessions.backends.base.SessionBase.flush and (2) cache_db.SessionStore.flush functions in Django 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions create empty ses… CWE-399
 Resource Management Errors
CVE-2015-5964 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:34
2015-08-24
Show GitHub Exploit DB Packet Storm
2900 -
5.0
MEDIUM contrib.sessions.middleware.SessionMiddleware in Django 1.8.x before 1.8.4, 1.7.x before 1.7.10, 1.4.x before 1.4.22, and possibly other versions allows remote attackers to cause a denial of service … CWE-399
 Resource Management Errors
CVE-2015-5963 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu…
2024-11-21 11:34
2015-08-24
Show GitHub Exploit DB Packet Storm