Software Detail

Software Informaton Top

Operating Systems

Software Detail

Ubuntu

Number Of NVD

4093

CRITICAL

341

HIGH

1595

MEDIUM

1941

LOW

216

URL	https://ubuntu.com/
Explanation	A release without LTS is a normal release and provides support for 9 months after it is released. LTS (Long Term Support) provides support for five years. After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://ubuntu.com/about/release-cycle
2			https://wiki.ubuntu.com/
3			https://wiki.ubuntu.com/Releases
4			https://ubuntu.com/licensing
5			https://ubuntu.com/security/notices

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
3631	Ubuntu 24	24.04.3	Aug. 7, 2025	April 25, 2024			0	0	1	0
3632	Ubuntu 23.04	23.04	April 24, 2023	April 24, 2023	April 30, 2024		1	5	2	0
3633	Ubuntu 22.04 LTS	22.04.5	Sept. 12, 2024	April 21, 2022	April 30, 2027	April 30, 2032	1	25	11	0
3634	Ubuntu 21.10	21.10	Oct. 14, 2021	Oct. 14, 2021	June 14, 2022	June 14, 2022	1	18	19	0
3635	Ubuntu 21.04	21.04	April 22, 2021	April 22, 2021	Jan. 30, 2022		0	12	11	0
3636	Ubuntu 20.10	20.10	Oct. 22, 2020	Oct. 22, 2020	July 30, 2021		0	5	13	1
3637	Ubuntu 20.04 LTS	20.04.6	March 23, 2023	April 23, 2020	April 30, 2025	April 30, 2030	21	144	239	32
3638	Ubuntu 19.10			Oct. 17, 2019	July 30, 2020		32	133	227	44
3639	Ubuntu 19.04			April 18, 2019	Jan. 30, 2020		45	126	184	23
3640	Ubuntu 18.10			Oct. 18, 2018	July 31, 2019		66	174	182	5
3641	Ubuntu 18.04 LTS	18.04.6	Sept. 17, 2021	April 26, 2018	April 30, 2023	April 30, 2028	202	645	891	80
3642	Ubuntu 17.10			Oct. 18, 2017	July 19, 2018		4	18	14	0
3643	Ubuntu 17.04			April 13, 2017	July 20, 2017		4	18	14	0
3644	Ubuntu 16.10			Oct. 13, 2016	July 28, 2016		6	24	8	0
3645	Ubuntu 16.04 LTS	16.04.7	Aug. 13, 2020	April 21, 2016	April 30, 2021	April 30, 2024	239	852	1060	83
3646	Ubuntu 15.10			Oct. 22, 2015	Feb. 4, 2016		20	148	162	24
3647	Ubuntu 15.04			April 23, 2015	July 23, 2015		5	100	130	29
3648	Ubuntu 14.10			Oct. 23, 2014	July 14, 2014		0	3	1	0
3649	Ubuntu 14.04 LTS	14.04.6	March 7, 2019	April 17, 2014	April 30, 2019	April 30, 2022	216	844	1015	82
3650	Ubuntu 13.10			Oct. 17, 2013	July 14, 2014		15	56	68	15
3651	Ubuntu 13.04			April 25, 2013	Jan. 27, 2014		6	16	60	9
3652	Ubuntu 12.04 LTS			April 26, 2012	April 28, 2017	April 30, 2019	90	577	669	83
3653	Ubuntu 11.10			Oct. 13, 2011	May 9, 2013		1	111	108	13
3654	Ubuntu 11.04			April 28, 2011	Oct. 28, 2012		1	56	56	8
3655	Ubuntu 10.10			Oct. 10, 2010	April 10, 2012		2	47	52	17
3656	Ubuntu 9.10			Oct. 29, 2009	April 30, 2011		5	56	56	16
3657	Ubuntu 9.04			April 23, 2009	Oct. 23, 2010		3	46	57	8
3658	Ubuntu 8.10			Oct. 30, 2008	April 30, 2010		2	49	47	6
3659	Ubuntu 8.04 LTS	8.04.4	Jan. 28, 2010	April 24, 2008	May 9, 2013		7	99	119	18
3660	Ubuntu 7.10			Oct. 18, 2007	April 18, 2009		3	48	37	5
3661	Ubuntu 7.04			April 19, 2007	Oct. 19, 2008		4	46	28	4
3662	Ubuntu 6.10			Oct. 26, 2006	April 26, 2008		2	33	32	4
3663	Ubuntu 5.10			Oct. 13, 2005	April 13, 2007		0	22	19	1
3664	Ubuntu 5.04			April 8, 2005	Oct. 31, 2006		0	14	13	2
3665	Ubuntu 4.10			Oct. 20, 2004	April 30, 2006		1	13	8	2

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
3631	- 9.3	HIGH	The str_unescape function in the JavaScript engine in Mozilla Firefox before 17.0, Thunderbird before 17.0, and SeaMonkey before 2.14 allows remote attackers to execute arbitrary code or cause a deni…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-4204	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-11-21	Show	GitHub Exploit DB Packet Storm

3632	- 4.3	MEDIUM	The HZ-GB-2312 character-set implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 do…	CWE-79 Cross-site Scripting	CVE-2012-4207	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-11-21	Show	GitHub Exploit DB Packet Storm

3633	- 9.3	HIGH	Heap-based buffer overflow in the image::RasterImage::DrawFrameTo function in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.1…	CWE-787 Out-of-bounds Write	CVE-2012-4202	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-11-21	Show	GitHub Exploit DB Packet Storm

3634	- 4.3	MEDIUM	The evalInSandbox implementation in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 uses an incor…	CWE-79 Cross-site Scripting	CVE-2012-4201	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-11-21	Show	GitHub Exploit DB Packet Storm

3635	- 6.8	MEDIUM	ppm2tiff does not check the return value of the TIFFScanlineSize function, which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PPM ima…	NVD-CWE-Other	CVE-2012-4564	cpe:2.3:o:canonical:ubuntu_linux:8.04:* cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux…	2024-11-21 10:43 2012-11-11	Show	GitHub Exploit DB Packet Storm

3636	5.9 5.8	MEDIUM Network	Lynx does not verify that the server's certificate is signed by a trusted certification authority, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate, related to …	CWE-295 Improper Certificate Validation	CVE-2012-5821	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:45 2012-11-5	Show	GitHub Exploit DB Packet Storm

3637	- 5.8	MEDIUM	Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service (FPS) merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's …	CWE-295 Improper Certificate Validation	CVE-2012-5783	cpe:2.3:o:canonical:ubuntu_linux:15.04:* cpe:2.3:o:canonical:ubuntu_linux:14.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:45 2012-11-5	Show	GitHub Exploit DB Packet Storm

3638	- 6.4	MEDIUM	Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 allow remote attackers to bypass the Same O…	CWE-74 Injection	CVE-2012-4196	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-10-30	Show	GitHub Exploit DB Packet Storm

3639	- 4.3	MEDIUM	The nsLocation::CheckURL function in Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 does n…	CWE-79 Cross-site Scripting	CVE-2012-4195	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-10-30	Show	GitHub Exploit DB Packet Storm

3640	- 4.3	MEDIUM	Mozilla Firefox before 16.0.2, Firefox ESR 10.x before 10.0.10, Thunderbird before 16.0.2, Thunderbird ESR 10.x before 10.0.10, and SeaMonkey before 2.13.2 do not prevent use of the valueOf method to…	CWE-79 Cross-site Scripting	CVE-2012-4194	cpe:2.3:o:canonical:ubuntu_linux:12.10:* cpe:2.3:o:canonical:ubuntu_linux:12.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 10:42 2012-10-30	Show	GitHub Exploit DB Packet Storm