Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3901 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
3902 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
3903 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
3904 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
3905 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
3906 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
3907 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
3908 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
3909 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
3910 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
3911 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
3912 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
3913 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
3914 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
3915 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
3916 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
3917 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
3918 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
3919 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3920 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3921 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3922 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3923 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3924 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3925 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3926 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3927 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3928 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3929 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3930 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3931 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3932 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3933 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3934 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3935 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3901 -
5.8 		MEDIUM The acl_group_override function in smbd/posix_acls.c in smbd in Samba 3.0.x before 3.0.35, 3.1.x and 3.2.x before 3.2.13, and 3.3.x before 3.3.6, when dos filemode is enabled, allows remote attackers… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-1888 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-25 		Show GitHub Exploit DB Packet Storm
3902 7.5
7.1 		HIGH
Network 		The XSL stylesheet implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 through 2.2.1, and iPhone OS for iPod touch 1.1 through 2.2.1 does not properly handle XML external entities, whi… CWE-611
XXE 		CVE-2009-1699 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:* 		2026-04-23 09:35
2009-06-11 		Show GitHub Exploit DB Packet Storm
3903 7.5
5.0 		HIGH
Network 		The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL point… CWE-908
 Use of Uninitialized Resource 		CVE-2009-0949 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-10 		Show GitHub Exploit DB Packet Storm
3904 4.7
1.9 		MEDIUM
Local 		The inode double locking code in fs/ocfs2/file.c in the Linux kernel 2.6.30 before 2.6.30-rc3, 2.6.27 before 2.6.27.24, 2.6.29 before 2.6.29.4, and possibly other versions down to 2.6.19 allows local… CWE-667
 Improper Locking 		CVE-2009-1961 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-8 		Show GitHub Exploit DB Packet Storm
3905 -
6.4 		MEDIUM Off-by-one error in the apr_brigade_vprintf function in Apache APR-util before 1.3.5 on big-endian platforms allows remote attackers to obtain sensitive information or cause a denial of service (appl… CWE-189
Numeric Errors 		CVE-2009-1956 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-8 		Show GitHub Exploit DB Packet Storm
3906 7.5
5.0 		HIGH
Network 		The expat XML parser in the apr_xml_* interface in xml/apr_xml.c in Apache APR-util before 1.3.7, as used in the mod_dav and mod_dav_svn modules in the Apache HTTP Server, allows remote attackers to … CWE-776
XML Entity Expansion 		CVE-2009-1955 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-8 		Show GitHub Exploit DB Packet Storm
3907 -
5.0 		MEDIUM The dtls1_retrieve_buffered_fragment function in ssl/d1_both.c in OpenSSL before 1.0.0 Beta 2 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an o… CWE-476
 NULL Pointer Dereference 		CVE-2009-1387 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-5 		Show GitHub Exploit DB Packet Storm
3908 -
5.0 		MEDIUM ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHell… CWE-476
 NULL Pointer Dereference 		CVE-2009-1386 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-06-5 		Show GitHub Exploit DB Packet Storm
3909 -
7.1 		HIGH Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service (memory corruption) and possibly have unspecified other impa… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-1633 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-05-29 		Show GitHub Exploit DB Packet Storm
3910 -
5.0 		MEDIUM Multiple memory leaks in the dtls1_process_out_of_seq_message function in ssl/d1_both.c in OpenSSL 0.9.8k and earlier 0.9.8 versions allow remote attackers to cause a denial of service (memory consum… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2009-1378 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2009-05-20 		Show GitHub Exploit DB Packet Storm