Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3241 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
3242 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
3243 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
3244 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
3245 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
3246 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
3247 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
3248 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
3249 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
3250 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
3251 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
3252 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
3253 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
3254 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
3255 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
3256 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
3257 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
3258 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
3259 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3260 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3261 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3262 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3263 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3264 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3265 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3266 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3267 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3268 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3269 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3270 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3271 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3272 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3273 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3274 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3275 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3241 -
4.0 		MEDIUM Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials, which makes it easier for remote servers … CWE-255
Credentials Management 		CVE-2014-3528 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:- 		2024-11-21 11:08
2014-08-20 		Show GitHub Exploit DB Packet Storm
3242 -
4.0 		MEDIUM The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name (CN) or subjectAltName field of the X.509 certif… CWE-297
 Improper Validation of Certificate with Host Mismatch 		CVE-2014-3522 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:- 		2024-11-21 11:08
2014-08-20 		Show GitHub Exploit DB Packet Storm
3243 -
4.0 		MEDIUM The (1) serf_ssl_cert_issuer, (2) serf_ssl_cert_subject, and (3) serf_ssl_cert_certificate functions in Serf 0.2.0 through 1.3.x before 1.3.7 does not properly handle a NUL byte in a domain name in t… NVD-CWE-Other
CVE-2014-3504 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:- 		2024-11-21 11:08
2014-08-20 		Show GitHub Exploit DB Packet Storm
3244 -
6.2 		MEDIUM fs/namespace.c in the Linux kernel through 3.16.1 does not properly restrict clearing MNT_NODEV, MNT_NOSUID, and MNT_NOEXEC and changing MNT_ATIME_MASK during a remount of a bind mount, which allows … CWE-269
 Improper Privilege Management 		CVE-2014-5207 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 11:11
2014-08-18 		Show GitHub Exploit DB Packet Storm
3245 -
7.2 		HIGH The do_remount function in fs/namespace.c in the Linux kernel through 3.16.1 does not maintain the MNT_LOCK_READONLY bit across a remount of a bind mount, which allows local users to bypass an intend… CWE-269
 Improper Privilege Management 		CVE-2014-5206 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 11:11
2014-08-18 		Show GitHub Exploit DB Packet Storm
3246 -
7.9 		HIGH NetBIOS name services daemon (nmbd) in Samba 4.0.x before 4.0.21 and 4.1.x before 4.1.11 allows remote attackers to execute arbitrary code via unspecified vectors that modify heap memory, involving a… CWE-94
Code Injection 		CVE-2014-3560 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 11:08
2014-08-7 		Show GitHub Exploit DB Packet Storm
3247 -
7.1 		HIGH The sctp_assoc_update function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a denial of service (NULL pointer dere… CWE-476
 NULL Pointer Dereference 		CVE-2014-5077 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 11:11
2014-08-1 		Show GitHub Exploit DB Packet Storm
3248 -
5.0 		MEDIUM The web interface in CUPS before 2.0 does not check that files have world-readable permissions, which allows remote attackers to obtains sensitive information via unspecified vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2014-5031 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:11
2014-07-29 		Show GitHub Exploit DB Packet Storm
3249 -
1.9 		LOW CUPS before 2.0 allows local users to read arbitrary files via a symlink attack on (1) index.html, (2) index.class, (3) index.pl, (4) index.php, (5) index.pyc, or (6) index.py. CWE-59
Link Following 		CVE-2014-5030 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:11
2014-07-29 		Show GitHub Exploit DB Packet Storm
3250 -
1.5 		LOW The web interface in CUPS 1.7.4 allows local users in the lp group to read arbitrary files via a symlink attack on a file in /var/cache/cups/rss/ and language[0] set to null. NOTE: this vulnerabilit… CWE-59
Link Following 		CVE-2014-5029 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 11:11
2014-07-29 		Show GitHub Exploit DB Packet Storm