Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3881 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
3882 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
3883 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
3884 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
3885 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
3886 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
3887 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
3888 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
3889 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
3890 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
3891 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
3892 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
3893 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
3894 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
3895 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
3896 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
3897 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
3898 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
3899 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3900 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3901 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3902 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3903 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3904 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3905 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3906 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3907 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3908 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3909 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3910 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3911 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3912 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3913 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3914 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3915 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3881 -
2.1 		LOW The tc_fill_tclass function in net/sched/sch_api.c in the tc subsystem in the Linux kernel 2.4.x before 2.4.37.6 and 2.6.x before 2.6.31-rc9 does not initialize certain (1) tcm__pad1 and (2) tcm__pad… CWE-909
 Missing Initialization of Resource 		CVE-2009-3228 cpe:2.3:o:canonical:ubuntu_linux:9.10:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-10-20 		Show GitHub Exploit DB Packet Storm
3882 -
4.0 		MEDIUM smbd in Samba 3.0 before 3.0.37, 3.2 before 3.2.15, 3.3 before 3.3.8, and 3.4 before 3.4.2 allows remote authenticated users to cause a denial of service (infinite loop) via an unanticipated oplock b… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2009-2906 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-10-8 		Show GitHub Exploit DB Packet Storm
3883 5.5
7.8 		MEDIUM
Local 		The get_random_int function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat … CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2009-3238 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-09-18 		Show GitHub Exploit DB Packet Storm
3884 -
9.3 		HIGH pam-auth-update for PAM, as used in Ubuntu 8.10 and 9.4, and Debian GNU/Linux, does not properly handle an "empty selection" for system authentication modules in certain rare configurations, which ca… CWE-287
Improper Authentication 		CVE-2009-3232 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:* 		2026-04-23 09:35
2009-09-17 		Show GitHub Exploit DB Packet Storm
3885 -
6.8 		MEDIUM The core server component in PostgreSQL 8.3 before 8.3.8 and 8.2 before 8.2.14, when using LDAP authentication with anonymous binds, allows remote attackers to bypass authentication via an empty pass… CWE-287
Improper Authentication 		CVE-2009-3231 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-09-17 		Show GitHub Exploit DB Packet Storm
3886 -
7.1 		HIGH Memory leak in the appletalk subsystem in the Linux kernel 2.4.x through 2.4.37.6 and 2.6.x through 2.6.31, when the appletalk and ipddp modules are loaded but the ipddp"N" device is not found, allow… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2009-2903 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-09-16 		Show GitHub Exploit DB Packet Storm
3887 -
5.0 		MEDIUM The WebKit component in Safari in Apple iPhone OS before 3.1, and iPhone OS before 3.1.1 for iPod touch, does not remove usernames and passwords from URLs sent in Referer headers, which allows remote… CWE-200
Information Exposure 		CVE-2009-2797 cpe:2.3:o:canonical:ubuntu_linux:9.10:*
cpe:2.3:o:canonical:ubuntu_linux:10.10:*
cpe:2.3:o:canonical:ubuntu_linux… 		2026-04-23 09:35
2009-09-11 		Show GitHub Exploit DB Packet Storm
3888 -
4.9 		MEDIUM The Linux kernel before 2.6.31-rc7 does not initialize certain data structures within getname functions, which allows local users to read the contents of some kernel memory locations by calling getso… CWE-200
Information Exposure 		CVE-2009-3002 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-08-29 		Show GitHub Exploit DB Packet Storm
3889 -
4.9 		MEDIUM The llc_ui_getname function in net/llc/af_llc.c in the Linux kernel 2.6.31-rc7 and earlier does not initialize a certain data structure, which allows local users to read the contents of some kernel m… CWE-200
Information Exposure 		CVE-2009-3001 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-08-29 		Show GitHub Exploit DB Packet Storm
3890 7.8
7.2 		HIGH
Local 		The udp_sendmsg function in the UDP implementation in (1) net/ipv4/udp.c and (2) net/ipv6/udp.c in the Linux kernel before 2.6.19 allows local users to gain privileges or cause a denial of service (N… CWE-476
 NULL Pointer Dereference 		CVE-2009-2698 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-08-28 		Show GitHub Exploit DB Packet Storm