Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
2981 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
2982 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
2983 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
2984 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
2985 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
2986 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
2987 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
2988 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
2989 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
2990 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
2991 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
2992 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
2993 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
2994 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
2995 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
2996 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
2997 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
2998 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
2999 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3000 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3001 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3002 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3003 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3004 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3005 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3006 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3007 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3008 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3009 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3010 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3011 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3012 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3013 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3014 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3015 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
2981 -
1.9 		LOW arch/x86/kernel/entry_64.S in the Linux kernel before 3.19.2 does not prevent the TS_COMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protectio… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-2830 cpe:2.3:o:canonical:ubuntu_linux:12.04:* 2024-11-21 11:28
2015-05-27 		Show GitHub Exploit DB Packet Storm
2982 3.7
4.3 		LOW
Network 		The TLS protocol 1.2 and earlier, when a DHE_EXPORT ciphersuite is enabled on a server but not on a client, does not properly convey a DHE_EXPORT choice, which allows man-in-the-middle attackers to c… CWE-310
Cryptographic Issues 		CVE-2015-4000 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:30
2015-05-21 		Show GitHub Exploit DB Packet Storm
2983 -
7.2 		HIGH Untrusted search path vulnerability in Module::Signature before 0.75 allows local users to gain privileges via a Trojan horse module under the current working directory, as demonstrated by a Trojan h… NVD-CWE-Other
CVE-2015-3409 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:29
2015-05-20 		Show GitHub Exploit DB Packet Storm
2984 -
10.0 		HIGH Module::Signature before 0.74 allows remote attackers to execute arbitrary shell commands via a crafted SIGNATURE file which is not properly handled when generating checksums from a signed manifest. CWE-77
Command Injection 		CVE-2015-3408 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:29
2015-05-20 		Show GitHub Exploit DB Packet Storm
2985 -
5.0 		MEDIUM Module::Signature before 0.74 allows remote attackers to bypass signature verification for files via a signature file that does not list the files. CWE-284
Improper Access Control 		CVE-2015-3407 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:29
2015-05-20 		Show GitHub Exploit DB Packet Storm
2986 -
5.0 		MEDIUM The _clone function in XML::LibXML before 2.0119 does not properly set the expand_entities option, which allows remote attackers to conduct XML external entity (XXE) attacks via crafted XML data to t… CWE-611
XXE 		CVE-2015-3451 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:29
2015-05-13 		Show GitHub Exploit DB Packet Storm
2987 -
5.0 		MEDIUM ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted xz archive file. CWE-399
 Resource Management Errors 		CVE-2015-2668 cpe:2.3:o:canonical:ubuntu_linux:15.1:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux… 		2024-11-21 11:27
2015-05-13 		Show GitHub Exploit DB Packet Storm
2988 -
5.0 		MEDIUM ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted petite packed file. CWE-399
 Resource Management Errors 		CVE-2015-2222 cpe:2.3:o:canonical:ubuntu_linux:15.1:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux… 		2024-11-21 11:27
2015-05-13 		Show GitHub Exploit DB Packet Storm
2989 -
5.0 		MEDIUM ClamAV before 0.98.7 allows remote attackers to cause a denial of service (infinite loop) via a crafted y0da cryptor file. CWE-399
 Resource Management Errors 		CVE-2015-2221 cpe:2.3:o:canonical:ubuntu_linux:15.1:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux… 		2024-11-21 11:27
2015-05-13 		Show GitHub Exploit DB Packet Storm
2990 -
5.0 		MEDIUM The upx decoder in ClamAV before 0.98.7 allows remote attackers to cause a denial of service (crash) via a crafted file. CWE-399
 Resource Management Errors 		CVE-2015-2170 cpe:2.3:o:canonical:ubuntu_linux:15.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:26
2015-05-13 		Show GitHub Exploit DB Packet Storm