Software Detail

Software Informaton Top

Operating Systems

Software Detail

Ubuntu

Number Of NVD

4093

CRITICAL

341

HIGH

1595

MEDIUM

1941

LOW

216

URL	https://ubuntu.com/
Explanation	A release without LTS is a normal release and provides support for 9 months after it is released. LTS (Long Term Support) provides support for five years. After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://ubuntu.com/about/release-cycle
2			https://wiki.ubuntu.com/
3			https://wiki.ubuntu.com/Releases
4			https://ubuntu.com/licensing
5			https://ubuntu.com/security/notices

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
3361	Ubuntu 24	24.04.3	Aug. 7, 2025	April 25, 2024			0	0	1	0
3362	Ubuntu 23.04	23.04	April 24, 2023	April 24, 2023	April 30, 2024		1	5	2	0
3363	Ubuntu 22.04 LTS	22.04.5	Sept. 12, 2024	April 21, 2022	April 30, 2027	April 30, 2032	1	25	11	0
3364	Ubuntu 21.10	21.10	Oct. 14, 2021	Oct. 14, 2021	June 14, 2022	June 14, 2022	1	18	19	0
3365	Ubuntu 21.04	21.04	April 22, 2021	April 22, 2021	Jan. 30, 2022		0	12	11	0
3366	Ubuntu 20.10	20.10	Oct. 22, 2020	Oct. 22, 2020	July 30, 2021		0	5	13	1
3367	Ubuntu 20.04 LTS	20.04.6	March 23, 2023	April 23, 2020	April 30, 2025	April 30, 2030	21	144	239	32
3368	Ubuntu 19.10			Oct. 17, 2019	July 30, 2020		32	133	227	44
3369	Ubuntu 19.04			April 18, 2019	Jan. 30, 2020		45	126	184	23
3370	Ubuntu 18.10			Oct. 18, 2018	July 31, 2019		66	174	182	5
3371	Ubuntu 18.04 LTS	18.04.6	Sept. 17, 2021	April 26, 2018	April 30, 2023	April 30, 2028	202	645	891	80
3372	Ubuntu 17.10			Oct. 18, 2017	July 19, 2018		4	18	14	0
3373	Ubuntu 17.04			April 13, 2017	July 20, 2017		4	18	14	0
3374	Ubuntu 16.10			Oct. 13, 2016	July 28, 2016		6	24	8	0
3375	Ubuntu 16.04 LTS	16.04.7	Aug. 13, 2020	April 21, 2016	April 30, 2021	April 30, 2024	239	852	1060	83
3376	Ubuntu 15.10			Oct. 22, 2015	Feb. 4, 2016		20	148	162	24
3377	Ubuntu 15.04			April 23, 2015	July 23, 2015		5	100	130	29
3378	Ubuntu 14.10			Oct. 23, 2014	July 14, 2014		0	3	1	0
3379	Ubuntu 14.04 LTS	14.04.6	March 7, 2019	April 17, 2014	April 30, 2019	April 30, 2022	216	844	1015	82
3380	Ubuntu 13.10			Oct. 17, 2013	July 14, 2014		15	56	68	15
3381	Ubuntu 13.04			April 25, 2013	Jan. 27, 2014		6	16	60	9
3382	Ubuntu 12.04 LTS			April 26, 2012	April 28, 2017	April 30, 2019	90	577	669	83
3383	Ubuntu 11.10			Oct. 13, 2011	May 9, 2013		1	111	108	13
3384	Ubuntu 11.04			April 28, 2011	Oct. 28, 2012		1	56	56	8
3385	Ubuntu 10.10			Oct. 10, 2010	April 10, 2012		2	47	52	17
3386	Ubuntu 9.10			Oct. 29, 2009	April 30, 2011		5	56	56	16
3387	Ubuntu 9.04			April 23, 2009	Oct. 23, 2010		3	46	57	8
3388	Ubuntu 8.10			Oct. 30, 2008	April 30, 2010		2	49	47	6
3389	Ubuntu 8.04 LTS	8.04.4	Jan. 28, 2010	April 24, 2008	May 9, 2013		7	99	119	18
3390	Ubuntu 7.10			Oct. 18, 2007	April 18, 2009		3	48	37	5
3391	Ubuntu 7.04			April 19, 2007	Oct. 19, 2008		4	46	28	4
3392	Ubuntu 6.10			Oct. 26, 2006	April 26, 2008		2	33	32	4
3393	Ubuntu 5.10			Oct. 13, 2005	April 13, 2007		0	22	19	1
3394	Ubuntu 5.04			April 8, 2005	Oct. 31, 2006		0	14	13	2
3395	Ubuntu 4.10			Oct. 20, 2004	April 30, 2006		1	13	8	2

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
3361	- 1.9	LOW	dmrc.c in Light Display Manager (aka LightDM) before 1.1.1 allows local users to read arbitrary files via a symlink attack on ~/.dmrc.	CWE-59 Link Following	CVE-2011-3153	cpe:2.3:o:canonical:ubuntu_linux:11.10:*	2024-11-21 10:29 2014-03-7	Show	GitHub Exploit DB Packet Storm

3362	- 2.6	LOW	methods/https.cc in apt before 0.8.11 accepts connections when the certificate host name fails validation and Verify-Host is enabled, which allows man-in-the-middle attackers to obtain repository cre…	CWE-200 Information Exposure	CVE-2011-3634	cpe:2.3:o:canonical:ubuntu_linux:8.04:- cpe:2.3:o:canonical:ubuntu_linux:11.04:* cpe:2.3:o:canonical:ubuntu_linux…	2024-11-21 10:30 2014-03-1	Show	GitHub Exploit DB Packet Storm

3363	- 2.1	LOW	The nfs_can_extend_write function in fs/nfs/write.c in the Linux kernel before 3.13.3 relies on a write delegation to extend a write operation without a certain up-to-date verification, which allows …	CWE-200 Information Exposure	CVE-2014-2038	cpe:2.3:o:canonical:ubuntu_linux:13.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:*	2024-11-21 11:05 2014-02-28	Show	GitHub Exploit DB Packet Storm

3364	- 4.9	MEDIUM	The security_context_to_sid_core function in security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by leveraging the CAP_MAC_…	CWE-20 Improper Input Validation	CVE-2014-1874	cpe:2.3:o:canonical:ubuntu_linux:13.10:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:05 2014-02-28	Show	GitHub Exploit DB Packet Storm

3365	- 2.6	LOW	The help function in net/netfilter/nf_nat_irc.c in the Linux kernel before 3.12.8 allows remote attackers to obtain sensitive information from kernel memory by establishing an IRC DCC session in whic…	CWE-200 Information Exposure	CVE-2014-1690	cpe:2.3:o:canonical:ubuntu_linux:13.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:*	2024-11-21 11:04 2014-02-28	Show	GitHub Exploit DB Packet Storm

3366	- 5.0	MEDIUM	Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2014-1943	cpe:2.3:o:canonical:ubuntu_linux:13.10:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:05 2014-02-19	Show	GitHub Exploit DB Packet Storm

3367	- 6.8	MEDIUM	The gdImageCrop function in ext/gd/gd.c in PHP 5.5.x before 5.5.9 does not check return values, which allows remote attackers to cause a denial of service (application crash) or possibly have unspeci…	CWE-20 Improper Input Validation	CVE-2013-7327	cpe:2.3:o:canonical:ubuntu_linux:13.10:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 11:00 2014-02-18	Show	GitHub Exploit DB Packet Storm

3368	- 5.0	MEDIUM	The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library (aka glibc) 2.14 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to …	CWE-189 Numeric Errors	CVE-2012-3405	cpe:2.3:o:canonical:ubuntu_linux:8.04:- cpe:2.3:o:canonical:ubuntu_linux:12.04:- cpe:2.3:o:canonical:ubuntu_linux…	2024-11-21 10:40 2014-02-11	Show	GitHub Exploit DB Packet Storm

3369	- 5.0	MEDIUM	The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library (aka glibc) 2.12 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to …	CWE-189 Numeric Errors	CVE-2012-3404	cpe:2.3:o:canonical:ubuntu_linux:8.04:- cpe:2.3:o:canonical:ubuntu_linux:12.04:- cpe:2.3:o:canonical:ubuntu_linux…	2024-11-21 10:40 2014-02-11	Show	GitHub Exploit DB Packet Storm

3370	- 6.8	MEDIUM	The vfprintf function in stdio-common/vfprintf.c in GNU C Library (aka glibc) 2.5, 2.12, and probably other versions does not "properly restrict the use of" the alloca function when allocating the SP…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3406	cpe:2.3:o:canonical:ubuntu_linux:8.04:- cpe:2.3:o:canonical:ubuntu_linux:12.04:- cpe:2.3:o:canonical:ubuntu_linux…	2024-11-21 10:40 2014-02-11	Show	GitHub Exploit DB Packet Storm