Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
3941 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
3942 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
3943 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
3944 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
3945 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
3946 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
3947 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
3948 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
3949 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
3950 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
3951 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
3952 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
3953 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
3954 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
3955 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
3956 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
3957 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
3958 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
3959 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
3960 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
3961 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
3962 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
3963 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
3964 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
3965 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
3966 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
3967 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
3968 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
3969 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
3970 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
3971 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
3972 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
3973 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
3974 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
3975 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
3941 -
4.3 		MEDIUM The session restore feature in Mozilla Firefox 3.x before 3.0.4 and 2.x before 2.0.0.18 allows remote attackers to violate the same origin policy to conduct cross-site scripting (XSS) attacks and exe… CWE-79
Cross-site Scripting 		CVE-2008-5019 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
3942 -
10.0 		HIGH The JavaScript engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of s… CWE-399
 Resource Management Errors 		CVE-2008-5018 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
3943 -
10.0 		HIGH Integer overflow in xpcom/io/nsEscape.cpp in the browser engine in Mozilla Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allo… CWE-189
Numeric Errors 		CVE-2008-5017 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
3944 -
10.0 		HIGH jslock.cpp in Mozilla Firefox 3.x before 3.0.2, Firefox 2.x before 2.0.0.18, Thunderbird 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 allows remote attackers to cause a denial of service (cra… CWE-20
 Improper Input Validation  		CVE-2008-5014 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
3945 -
9.3 		HIGH The http-index-format MIME type parser (nsDirIndexParser) in Firefox 3.x before 3.0.4, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13 does not check for an allocation failure, which all… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-0017 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
3946 5.9
4.3 		MEDIUM
Network 		The _gnutls_x509_verify_certificate function in lib/x509/verify.c in libgnutls in GnuTLS before 2.6.1 trusts certificate chains in which the last certificate is an arbitrary trusted, self-signed cert… CWE-295
Improper Certificate Validation  		CVE-2008-4989 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-13 		Show GitHub Exploit DB Packet Storm
3947 -
7.8 		HIGH The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel before 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which a… CWE-20
 Improper Input Validation  		CVE-2008-4934 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-11-6 		Show GitHub Exploit DB Packet Storm
3948 -
4.3 		MEDIUM Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13, when running on Windows, do not properly identify the context of Windows .url shortcut files, which … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-4582 cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-10-16 		Show GitHub Exploit DB Packet Storm
3949 7.5
6.4 		HIGH
Network 		The ACL plugin in Dovecot before 1.1.4 treats negative access rights as if they are positive access rights, which allows attackers to bypass intended access restrictions. CWE-863
 Incorrect Authorization 		CVE-2008-4577 cpe:2.3:o:canonical:ubuntu_linux:9.04:*
cpe:2.3:o:canonical:ubuntu_linux:8.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-10-16 		Show GitHub Exploit DB Packet Storm
3950 -
7.8 		HIGH Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass "restrictions imp… CWE-22
Path Traversal 		CVE-2008-4068 cpe:2.3:o:canonical:ubuntu_linux:8.04:*
cpe:2.3:o:canonical:ubuntu_linux:7.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2008-09-25 		Show GitHub Exploit DB Packet Storm