Software Detail

Software Informaton Top

Operating Systems

Software Detail

Ubuntu

Number Of NVD

4093

CRITICAL

341

HIGH

1595

MEDIUM

1941

LOW

216

URL	https://ubuntu.com/
Explanation	A release without LTS is a normal release and provides support for 9 months after it is released. LTS (Long Term Support) provides support for five years. After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://ubuntu.com/about/release-cycle
2			https://wiki.ubuntu.com/
3			https://wiki.ubuntu.com/Releases
4			https://ubuntu.com/licensing
5			https://ubuntu.com/security/notices

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
3471	Ubuntu 24	24.04.3	Aug. 7, 2025	April 25, 2024			0	0	1	0
3472	Ubuntu 23.04	23.04	April 24, 2023	April 24, 2023	April 30, 2024		1	5	2	0
3473	Ubuntu 22.04 LTS	22.04.5	Sept. 12, 2024	April 21, 2022	April 30, 2027	April 30, 2032	1	25	11	0
3474	Ubuntu 21.10	21.10	Oct. 14, 2021	Oct. 14, 2021	June 14, 2022	June 14, 2022	1	18	19	0
3475	Ubuntu 21.04	21.04	April 22, 2021	April 22, 2021	Jan. 30, 2022		0	12	11	0
3476	Ubuntu 20.10	20.10	Oct. 22, 2020	Oct. 22, 2020	July 30, 2021		0	5	13	1
3477	Ubuntu 20.04 LTS	20.04.6	March 23, 2023	April 23, 2020	April 30, 2025	April 30, 2030	21	144	239	32
3478	Ubuntu 19.10			Oct. 17, 2019	July 30, 2020		32	133	227	44
3479	Ubuntu 19.04			April 18, 2019	Jan. 30, 2020		45	126	184	23
3480	Ubuntu 18.10			Oct. 18, 2018	July 31, 2019		66	174	182	5
3481	Ubuntu 18.04 LTS	18.04.6	Sept. 17, 2021	April 26, 2018	April 30, 2023	April 30, 2028	202	645	891	80
3482	Ubuntu 17.10			Oct. 18, 2017	July 19, 2018		4	18	14	0
3483	Ubuntu 17.04			April 13, 2017	July 20, 2017		4	18	14	0
3484	Ubuntu 16.10			Oct. 13, 2016	July 28, 2016		6	24	8	0
3485	Ubuntu 16.04 LTS	16.04.7	Aug. 13, 2020	April 21, 2016	April 30, 2021	April 30, 2024	239	852	1060	83
3486	Ubuntu 15.10			Oct. 22, 2015	Feb. 4, 2016		20	148	162	24
3487	Ubuntu 15.04			April 23, 2015	July 23, 2015		5	100	130	29
3488	Ubuntu 14.10			Oct. 23, 2014	July 14, 2014		0	3	1	0
3489	Ubuntu 14.04 LTS	14.04.6	March 7, 2019	April 17, 2014	April 30, 2019	April 30, 2022	216	844	1015	82
3490	Ubuntu 13.10			Oct. 17, 2013	July 14, 2014		15	56	68	15
3491	Ubuntu 13.04			April 25, 2013	Jan. 27, 2014		6	16	60	9
3492	Ubuntu 12.04 LTS			April 26, 2012	April 28, 2017	April 30, 2019	90	577	669	83
3493	Ubuntu 11.10			Oct. 13, 2011	May 9, 2013		1	111	108	13
3494	Ubuntu 11.04			April 28, 2011	Oct. 28, 2012		1	56	56	8
3495	Ubuntu 10.10			Oct. 10, 2010	April 10, 2012		2	47	52	17
3496	Ubuntu 9.10			Oct. 29, 2009	April 30, 2011		5	56	56	16
3497	Ubuntu 9.04			April 23, 2009	Oct. 23, 2010		3	46	57	8
3498	Ubuntu 8.10			Oct. 30, 2008	April 30, 2010		2	49	47	6
3499	Ubuntu 8.04 LTS	8.04.4	Jan. 28, 2010	April 24, 2008	May 9, 2013		7	99	119	18
3500	Ubuntu 7.10			Oct. 18, 2007	April 18, 2009		3	48	37	5
3501	Ubuntu 7.04			April 19, 2007	Oct. 19, 2008		4	46	28	4
3502	Ubuntu 6.10			Oct. 26, 2006	April 26, 2008		2	33	32	4
3503	Ubuntu 5.10			Oct. 13, 2005	April 13, 2007		0	22	19	1
3504	Ubuntu 5.04			April 8, 2005	Oct. 31, 2006		0	14	13	2
3505	Ubuntu 4.10			Oct. 20, 2004	April 30, 2006		1	13	8	2

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
3471	- 1.9	LOW	Race condition in the post-installation script (mysql-server-5.5.postinst) for MySQL Server 5.5 for Debian GNU/Linux and Ubuntu Linux creates a configuration file with world-readable permissions befo…	CWE-362 Race Condition	CVE-2013-2162	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:51 2013-08-19	Show	GitHub Exploit DB Packet Storm

3472	- 4.3	MEDIUM	The openssl_x509_parse function in openssl.c in the OpenSSL module in PHP before 5.4.18 and 5.5.x before 5.5.2 does not properly handle a '\0' character in a domain name in the Subject Alternative Na…	CWE-20 Improper Input Validation	CVE-2013-4248	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:55 2013-08-18	Show	GitHub Exploit DB Packet Storm

3473	- 4.3	MEDIUM	The ssl.match_hostname function in the SSL module in Python 2.6 through 3.4 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, w…	CWE-20 Improper Input Validation	CVE-2013-4238	cpe:2.3:o:canonical:ubuntu_linux:10.04:-	2024-11-21 10:55 2013-08-18	Show	GitHub Exploit DB Packet Storm

3474	- 4.3	MEDIUM	bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) vi…	NVD-CWE-Other	CVE-2013-2132	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:51 2013-08-16	Show	GitHub Exploit DB Packet Storm

3475	- 7.5	HIGH	Multiple double free vulnerabilities in the LibRaw::unpack function in libraw_cxx.cpp in LibRaw before 0.15.2 allow context-dependent attackers to cause a denial of service (application crash) and po…	CWE-399 Resource Management Errors	CVE-2013-2126	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:51 2013-08-15	Show	GitHub Exploit DB Packet Storm

3476	- 5.0	MEDIUM	Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (…	CWE-189 Numeric Errors	CVE-2013-4124	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:54 2013-08-6	Show	GitHub Exploit DB Packet Storm

3477	- 6.8	MEDIUM	Heap-based buffer overflow in the curl_easy_unescape function in lib/escape.c in cURL and libcurl 7.7 through 7.30.0 allows remote attackers to cause a denial of service (application crash) or possib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-2174	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:51 2013-07-31	Show	GitHub Exploit DB Packet Storm

3478	- 7.8	HIGH	The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection.	NVD-CWE-noinfo	CVE-2013-2112	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:51 2013-07-31	Show	GitHub Exploit DB Packet Storm

3479	- 5.5	MEDIUM	Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service (FSFS repository corruption) via a newline character in a file name.	NVD-CWE-noinfo	CVE-2013-1968	cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:50 2013-07-31	Show	GitHub Exploit DB Packet Storm

3480	- 7.1	HIGH	XMLscanner.java in Apache Xerces2 Java Parser before 2.12.0, as used in the Java Runtime Environment (JRE) in IBM Java 5.0 before 5.0 SR16-FP3, 6 before 6 SR14, 6.0.1 before 6.0.1 SR6, and 7 before 7…	NVD-CWE-noinfo	CVE-2013-4002	cpe:2.3:o:canonical:ubuntu_linux:13.10:* cpe:2.3:o:canonical:ubuntu_linux:13.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:54 2013-07-23	Show	GitHub Exploit DB Packet Storm