Software Detail

Software Informaton Top

Operating Systems

Software Detail

Ubuntu

Number Of NVD

4093

CRITICAL

341

HIGH

1595

MEDIUM

1941

LOW

216

URL	https://ubuntu.com/
Explanation	A release without LTS is a normal release and provides support for 9 months after it is released. LTS (Long Term Support) provides support for five years. After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://ubuntu.com/about/release-cycle
2			https://wiki.ubuntu.com/
3			https://wiki.ubuntu.com/Releases
4			https://ubuntu.com/licensing
5			https://ubuntu.com/security/notices

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
3141	Ubuntu 24	24.04.3	Aug. 7, 2025	April 25, 2024			0	0	1	0
3142	Ubuntu 23.04	23.04	April 24, 2023	April 24, 2023	April 30, 2024		1	5	2	0
3143	Ubuntu 22.04 LTS	22.04.5	Sept. 12, 2024	April 21, 2022	April 30, 2027	April 30, 2032	1	25	11	0
3144	Ubuntu 21.10	21.10	Oct. 14, 2021	Oct. 14, 2021	June 14, 2022	June 14, 2022	1	18	19	0
3145	Ubuntu 21.04	21.04	April 22, 2021	April 22, 2021	Jan. 30, 2022		0	12	11	0
3146	Ubuntu 20.10	20.10	Oct. 22, 2020	Oct. 22, 2020	July 30, 2021		0	5	13	1
3147	Ubuntu 20.04 LTS	20.04.6	March 23, 2023	April 23, 2020	April 30, 2025	April 30, 2030	21	144	239	32
3148	Ubuntu 19.10			Oct. 17, 2019	July 30, 2020		32	133	227	44
3149	Ubuntu 19.04			April 18, 2019	Jan. 30, 2020		45	126	184	23
3150	Ubuntu 18.10			Oct. 18, 2018	July 31, 2019		66	174	182	5
3151	Ubuntu 18.04 LTS	18.04.6	Sept. 17, 2021	April 26, 2018	April 30, 2023	April 30, 2028	202	645	891	80
3152	Ubuntu 17.10			Oct. 18, 2017	July 19, 2018		4	18	14	0
3153	Ubuntu 17.04			April 13, 2017	July 20, 2017		4	18	14	0
3154	Ubuntu 16.10			Oct. 13, 2016	July 28, 2016		6	24	8	0
3155	Ubuntu 16.04 LTS	16.04.7	Aug. 13, 2020	April 21, 2016	April 30, 2021	April 30, 2024	239	852	1060	83
3156	Ubuntu 15.10			Oct. 22, 2015	Feb. 4, 2016		20	148	162	24
3157	Ubuntu 15.04			April 23, 2015	July 23, 2015		5	100	130	29
3158	Ubuntu 14.10			Oct. 23, 2014	July 14, 2014		0	3	1	0
3159	Ubuntu 14.04 LTS	14.04.6	March 7, 2019	April 17, 2014	April 30, 2019	April 30, 2022	216	844	1015	82
3160	Ubuntu 13.10			Oct. 17, 2013	July 14, 2014		15	56	68	15
3161	Ubuntu 13.04			April 25, 2013	Jan. 27, 2014		6	16	60	9
3162	Ubuntu 12.04 LTS			April 26, 2012	April 28, 2017	April 30, 2019	90	577	669	83
3163	Ubuntu 11.10			Oct. 13, 2011	May 9, 2013		1	111	108	13
3164	Ubuntu 11.04			April 28, 2011	Oct. 28, 2012		1	56	56	8
3165	Ubuntu 10.10			Oct. 10, 2010	April 10, 2012		2	47	52	17
3166	Ubuntu 9.10			Oct. 29, 2009	April 30, 2011		5	56	56	16
3167	Ubuntu 9.04			April 23, 2009	Oct. 23, 2010		3	46	57	8
3168	Ubuntu 8.10			Oct. 30, 2008	April 30, 2010		2	49	47	6
3169	Ubuntu 8.04 LTS	8.04.4	Jan. 28, 2010	April 24, 2008	May 9, 2013		7	99	119	18
3170	Ubuntu 7.10			Oct. 18, 2007	April 18, 2009		3	48	37	5
3171	Ubuntu 7.04			April 19, 2007	Oct. 19, 2008		4	46	28	4
3172	Ubuntu 6.10			Oct. 26, 2006	April 26, 2008		2	33	32	4
3173	Ubuntu 5.10			Oct. 13, 2005	April 13, 2007		0	22	19	1
3174	Ubuntu 5.04			April 8, 2005	Oct. 31, 2006		0	14	13	2
3175	Ubuntu 4.10			Oct. 20, 2004	April 30, 2006		1	13	8	2

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
3141	- 3.5	LOW	Unspecified vulnerability in Oracle MySQL Server 5.5.40 and earlier, and 5.6.21 and earlier, allows remote authenticated users to affect availability via vectors related to Server : InnoDB : DML.	NVD-CWE-noinfo	CVE-2014-6568	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:14 2015-01-22	Show	GitHub Exploit DB Packet Storm

3142	- 7.5	HIGH	libavcodec/utvideodec.c in FFmpeg before 2.5.2 does not check for a zero value of a slice height, which allows remote attackers to cause a denial of service (out-of-bounds array access) or possibly h…	CWE-189 Numeric Errors	CVE-2014-9604	cpe:2.3:o:canonical:ubuntu_linux:12.04:*	2024-11-21 11:21 2015-01-17	Show	GitHub Exploit DB Packet Storm

3143	- 5.0	MEDIUM	ModelMultipleChoiceField in Django 1.6.x before 1.6.10 and 1.7.x before 1.7.3, when show_hidden_initial is set to True, allows remote attackers to cause a denial of service by submitting duplicate va…	CWE-17 Code	CVE-2015-0222	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:22 2015-01-17	Show	GitHub Exploit DB Packet Storm

3144	- 5.0	MEDIUM	The django.views.static.serve view in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 reads files an entire line at a time, which allows remote attackers to cause a denial of servic…	CWE-399 Resource Management Errors	CVE-2015-0221	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:22 2015-01-17	Show	GitHub Exploit DB Packet Storm

3145	- 4.3	MEDIUM	The django.util.http.is_safe_url function in Django before 1.4.18, 1.6.x before 1.6.10, and 1.7.x before 1.7.3 does not properly handle leading whitespaces, which allows remote attackers to conduct c…	CWE-79 Cross-site Scripting	CVE-2015-0220	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:22 2015-01-17	Show	GitHub Exploit DB Packet Storm

3146	- 2.1	LOW	The sd2_parse_rsrc_fork function in sd2.c in libsndfile allows attackers to have unspecified impact via vectors related to a (1) map offset or (2) rsrc marker, which triggers an out-of-bounds read.	NVD-CWE-noinfo	CVE-2014-9496	cpe:2.3:o:canonical:ubuntu_linux:15.10:* cpe:2.3:o:canonical:ubuntu_linux:15.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:21 2015-01-17	Show	GitHub Exploit DB Packet Storm

3147	- 7.5	HIGH	The parse_datetime function in GNU coreutils allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=…	NVD-CWE-noinfo	CVE-2014-9471	cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:20 2015-01-17	Show	GitHub Exploit DB Packet Storm

3148	- 5.0	MEDIUM	The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8738	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:19 2015-01-16	Show	GitHub Exploit DB Packet Storm

3149	- 4.3	MEDIUM	CRLF injection vulnerability in libcurl 6.0 through 7.x before 7.40.0, when using an HTTP proxy, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks v…	NVD-CWE-Other	CVE-2014-8150	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:18 2015-01-16	Show	GitHub Exploit DB Packet Storm

3150	- 2.1	LOW	The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR …	NVD-CWE-noinfo	CVE-2014-9585	cpe:2.3:o:canonical:ubuntu_linux:14.10:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:21 2015-01-10	Show	GitHub Exploit DB Packet Storm