Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
21 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
22 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
23 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
24 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
25 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
26 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
27 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
28 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
29 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
30 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
31 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
32 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
33 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
34 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
35 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
36 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
37 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
38 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
39 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
40 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
41 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
42 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
43 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
44 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
45 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
46 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
47 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
48 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
49 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
50 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
51 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
52 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
53 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
54 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
55 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
21 10.0
- 		CRITICAL
Network 		Using the TIOCLINUX ioctl request, a malicious snap could inject contents into the input of the controlling terminal which could allow it to cause arbitrary commands to be executed outside of the sna… CWE-74
Injection 		CVE-2023-1523 cpe:2.3:o:canonical:ubuntu_linux:23.04:*
cpe:2.3:o:canonical:ubuntu_linux:22.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 16:39
2023-09-2 		Show GitHub Exploit DB Packet Storm
22 7.8
- 		HIGH
Local 		An issue was discovered in l2cap_sock_release in net/bluetooth/l2cap_sock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled. CWE-416
 Use After Free 		CVE-2023-40283 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 17:19
2023-08-14 		Show GitHub Exploit DB Packet Storm
23 7.8
- 		HIGH
Local 		Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks when calling ovl_do_setxattr on Ubuntu kernels CWE-863
 Incorrect Authorization 		CVE-2023-32629 cpe:2.3:o:canonical:ubuntu_linux:23.04:* 2024-11-21 17:03
2023-07-26 		Show GitHub Exploit DB Packet Storm
24 7.8
- 		HIGH
Local 		On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlayfs.* xattrs", an unprivileged user may set privileged extended attributes on th… CWE-863
 Incorrect Authorization 		CVE-2023-2640 cpe:2.3:o:canonical:ubuntu_linux:23.04:* 2024-11-21 16:58
2023-07-26 		Show GitHub Exploit DB Packet Storm
25 7.1
- 		HIGH
Local 		A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak int… CWE-416
 Use After Free 		CVE-2023-3567 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 17:17
2023-07-25 		Show GitHub Exploit DB Packet Storm
26 7.8
- 		HIGH
Local 		Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespa… CWE-416
 Use After Free 		CVE-2023-31248 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 17:01
2023-07-6 		Show GitHub Exploit DB Packet Storm
27 7.8
- 		HIGH
Local 		A use-after-free vulnerability in the Linux Kernel io_uring subsystem can be exploited to achieve local privilege escalation. Racing a io_uring cancel poll request with a linked timeout can cause a … CWE-416
 Use After Free 		CVE-2023-3389 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 17:17
2023-06-29 		Show GitHub Exploit DB Packet Storm
28 7.8
- 		HIGH
Local 		An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GEN… CWE-787
 Out-of-bounds Write 		CVE-2023-35788 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 17:08
2023-06-17 		Show GitHub Exploit DB Packet Storm
29 4.7
- 		MEDIUM
Local 		Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to c… CWE-667
 Improper Locking 		CVE-2023-2612 cpe:2.3:o:canonical:ubuntu_linux:22.10:*
cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 16:58
2023-05-31 		Show GitHub Exploit DB Packet Storm
30 5.5
- 		MEDIUM
Local 		Sensitive data could be exposed in logs of cloud-init before version 23.1.2. An attacker could use this information to find hashed passwords and possibly escalate their privilege. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2023-1786 cpe:2.3:o:canonical:ubuntu_linux:23.04:*
cpe:2.3:o:canonical:ubuntu_linux:22.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 16:39
2023-04-27 		Show GitHub Exploit DB Packet Storm