Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3211 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
3212 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
3213 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
3214 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
3215 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
3216 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
3217 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
3218 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
3219 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
3220 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
3221 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
3222 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
3223 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
3224 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
3225 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
3226 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
3227 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
3228 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
3229 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3230 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3231 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3232 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3233 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3234 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3235 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3236 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3237 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3238 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3239 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3240 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3241 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3242 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3243 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3244 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3245 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3211 -
6.4 		MEDIUM The (1) bundled GnuTLS SSL/TLS plugin and the (2) bundled OpenSSL SSL/TLS plugin in libpurple in Pidgin before 2.10.10 do not properly consider the Basic Constraints extension during verification of … CWE-310
Cryptographic Issues 		CVE-2014-3694 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:08
2014-10-29 		Show GitHub Exploit DB Packet Storm
3212 -
3.7 		LOW The slapper function in chkrootkit before 0.50 does not properly quote file paths, which allows local users to execute arbitrary code via a Trojan horse executable. NOTE: this is only a vulnerabilit… CWE-20
 Improper Input Validation  		CVE-2014-0476 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:13.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:02
2014-10-26 		Show GitHub Exploit DB Packet Storm
3213 -
6.8 		MEDIUM Multiple heap-based buffer overflows in the status_handler function in (1) engine-gpgsm.c and (2) engine-uiserver.c in GPGME before 1.5.1 allow remote attackers to cause a denial of service (crash) a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2014-3564 cpe:2.3:o:canonical:ubuntu_linux:12.04:-
cpe:2.3:o:canonical:ubuntu_linux:10.04:- 		2024-11-21 11:08
2014-10-21 		Show GitHub Exploit DB Packet Storm
3214 -
6.8 		MEDIUM wpa_supplicant and hostapd 0.7.2 through 2.2, when running with certain configurations and using wpa_cli or hostapd_cli with action scripts, allows remote attackers to execute arbitrary commands via … CWE-20
 Improper Input Validation  		CVE-2014-3686 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:-
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:08
2014-10-16 		Show GitHub Exploit DB Packet Storm
3215 -
5.0 		MEDIUM Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc password by reading the Authorization header in a redirected request. CWE-200
Information Exposure 		CVE-2014-1829 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 11:05
2014-10-15 		Show GitHub Exploit DB Packet Storm
3216 5.5
4.9 		MEDIUM
Local 		The do_umount function in fs/namespace.c in the Linux kernel through 3.17 does not require the CAP_SYS_ADMIN capability for do_remount_sb calls that change the root filesystem to read-only, which all… NVD-CWE-noinfo
CVE-2014-7975 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:18
2014-10-13 		Show GitHub Exploit DB Packet Storm
3217 5.5
4.9 		MEDIUM
Local 		The pivot_root implementation in fs/namespace.c in the Linux kernel through 3.17 does not properly interact with certain locations of a chroot directory, which allows local users to cause a denial of… CWE-400
 Uncontrolled Resource Consumption 		CVE-2014-7970 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 11:18
2014-10-13 		Show GitHub Exploit DB Packet Storm
3218 -
5.0 		MEDIUM The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in the Apache HTTP Server before 2.4.11 allows remote attackers to cause a denial of service (NULL pointer d… CWE-476
 NULL Pointer Dereference 		CVE-2014-3581 cpe:2.3:o:canonical:ubuntu_linux:14.10:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:08
2014-10-10 		Show GitHub Exploit DB Packet Storm
3219 -
2.1 		LOW The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove before 2013.2.4 and 2014.1 before 2014.1.3 allows local users to obtain passwords from commands that cause a Pro… CWE-200
Information Exposure 		CVE-2014-7230 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 11:16
2014-10-9 		Show GitHub Exploit DB Packet Storm
3220 -
5.0 		MEDIUM jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file. CWE-399
 Resource Management Errors 		CVE-2014-7204 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 11:16
2014-10-7 		Show GitHub Exploit DB Packet Storm