Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3051 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
3052 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
3053 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
3054 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
3055 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
3056 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
3057 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
3058 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
3059 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
3060 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
3061 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
3062 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
3063 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
3064 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
3065 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
3066 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
3067 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
3068 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
3069 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3070 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3071 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3072 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3073 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3074 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3075 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3076 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3077 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3078 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3079 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3080 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3081 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3082 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3083 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3084 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3085 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3051 -
7.5 		HIGH The remove_bad_chars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the (1) model or (… CWE-77
Command Injection 		CVE-2015-2265 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 11:27
2015-03-25 		Show GitHub Exploit DB Packet Storm
3052 -
6.4 		MEDIUM XML external entity (XXE) vulnerability in the SVG to (1) PNG and (2) JPG conversion classes in Apache Batik 1.x before 1.8 allows remote attackers to read arbitrary files or cause a denial of servic… NVD-CWE-Other
CVE-2015-0250 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:22
2015-03-25 		Show GitHub Exploit DB Packet Storm
3053 -
8.5 		HIGH The bdfReadCharacters function in bitmap/bdfread.c in X.Org libXfont before 1.4.9 and 1.5.x before 1.5.1 does not properly handle character bitmaps it cannot read, which allows remote authenticated u… NVD-CWE-Other
CVE-2015-1803 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:26
2015-03-20 		Show GitHub Exploit DB Packet Storm
3054 -
6.8 		MEDIUM The resolve_redirects function in sessions.py in requests 2.1.0 through 2.5.3 allows remote attackers to conduct session fixation attacks via a cookie without a host value in a redirect. NVD-CWE-Other
CVE-2015-2296 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 11:27
2015-03-19 		Show GitHub Exploit DB Packet Storm
3055 -
10.0 		HIGH Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and pani… NVD-CWE-Other
CVE-2015-1421 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:25
2015-03-16 		Show GitHub Exploit DB Packet Storm
3056 -
6.9 		MEDIUM The InfiniBand (IB) implementation in the Linux kernel package before 2.6.32-504.12.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly restrict use of User Verbs for registration of memory regi… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-8159 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:18
2015-03-16 		Show GitHub Exploit DB Packet Storm
3057 -
6.4 		MEDIUM Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive. CWE-22
Path Traversal 		CVE-2015-2304 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:27
2015-03-16 		Show GitHub Exploit DB Packet Storm
3058 -
7.5 		HIGH Apache Standard Taglibs before 1.2.3 allows remote attackers to execute arbitrary code or conduct external XML entity (XXE) attacks via a crafted XSLT extension in a (1) <x:parse> or (2) <x:transform… NVD-CWE-Other
CVE-2015-0254 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 11:22
2015-03-9 		Show GitHub Exploit DB Packet Storm
3059 -
7.5 		HIGH Multiple unspecified vulnerabilities in Google V8 before 4.1.0.21, as used in Google Chrome before 41.0.2272.76, allow attackers to cause a denial of service or possibly have other impact via unknown… NVD-CWE-noinfo
CVE-2015-2238 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 11:27
2015-03-9 		Show GitHub Exploit DB Packet Storm
3060 -
7.5 		HIGH Multiple unspecified vulnerabilities in Google Chrome before 41.0.2272.76 allow attackers to cause a denial of service or possibly have other impact via unknown vectors. NVD-CWE-noinfo
CVE-2015-1231 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 11:24
2015-03-9 		Show GitHub Exploit DB Packet Storm