Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
4021 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
4022 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
4023 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
4024 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
4025 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
4026 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
4027 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
4028 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
4029 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
4030 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
4031 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
4032 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
4033 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
4034 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
4035 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
4036 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
4037 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
4038 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
4039 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
4040 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
4041 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
4042 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
4043 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
4044 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
4045 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
4046 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
4047 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
4048 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
4049 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
4050 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
4051 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
4052 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
4053 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
4054 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
4055 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
4021 -
4.3 		MEDIUM Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apache HTTP Server (httpd), when ExtendedStatus is enabled and a public server-status page is used, allows remote … NVD-CWE-Other
CVE-2006-5752 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-06-28 		Show GitHub Exploit DB Packet Storm
4022 -
10.0 		HIGH The gssrpc__svcauth_gssapi function in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code via a zero-length RPC credential, which causes… CWE-824
 Access of Uninitialized Pointer 		CVE-2007-2442 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-06-27 		Show GitHub Exploit DB Packet Storm
4023 -
8.3 		HIGH Integer signedness error in the gssrpc__svcauth_unix function in svc_auth_unix.c in the RPC library in MIT Kerberos 5 (krb5) 1.6.1 and earlier might allow remote attackers to execute arbitrary code v… NVD-CWE-Other
CVE-2007-2443 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-06-27 		Show GitHub Exploit DB Packet Storm
4024 -
9.0 		HIGH Stack-based buffer overflow in the rename_principal_2_svc function in kadmind for MIT Kerberos 1.5.3, 1.6.1, and other versions allows remote authenticated users to execute arbitrary code via a craft… CWE-787
 Out-of-bounds Write 		CVE-2007-2798 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-06-27 		Show GitHub Exploit DB Packet Storm
4025 7.5
4.3 		HIGH
Network 		Net::DNS before 0.60, a Perl module, allows remote attackers to cause a denial of service (stack consumption) via a malformed compressed DNS packet with self-referencing pointers, which triggers an i… CWE-674
 Uncontrolled Recursion 		CVE-2007-3409 cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:6.06:* 		2026-04-23 09:35
2007-06-27 		Show GitHub Exploit DB Packet Storm
4026 -
4.7 		MEDIUM Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to cause a denial of service by modifying the worker_score and process_score arrays to reference an arbitrary pr… NVD-CWE-noinfo
CVE-2007-3304 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-06-21 		Show GitHub Exploit DB Packet Storm
4027 -
2.1 		LOW Integer underflow in the cpuset_tasks_read function in the Linux kernel before 2.6.20.13, and 2.6.21.x before 2.6.21.4, when the cpuset filesystem is mounted, allows local users to obtain kernel memo… CWE-189
Numeric Errors 		CVE-2007-2875 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-06-12 		Show GitHub Exploit DB Packet Storm
4028 -
5.0 		MEDIUM The soap extension in PHP calls php_rand_r with an uninitialized seed variable, which has unknown impact and attack vectors, a related issue to the mcrypt_create_iv issue covered by CVE-2007-2727. No… NVD-CWE-noinfo
CVE-2007-2728 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-05-17 		Show GitHub Exploit DB Packet Storm
4029 -
4.9 		MEDIUM MySQL before 4.1.23, 5.0.x before 5.0.42, and 5.1.x before 5.1.18 does not require the DROP privilege for RENAME TABLE statements, which allows remote authenticated users to rename arbitrary tables. NVD-CWE-Other
CVE-2007-2691 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-05-16 		Show GitHub Exploit DB Packet Storm
4030 -
7.2 		HIGH Logic error in the SID/Name translation functionality in smbd in Samba 3.0.23d through 3.0.25pre2 allows local users to gain temporary privileges and execute SMB/CIFS protocol operations via unspecif… CWE-269
 Improper Privilege Management 		CVE-2007-2444 cpe:2.3:o:canonical:ubuntu_linux:7.04:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*
cpe:2.3:o:canonical:ubuntu_linux:… 		2026-04-23 09:35
2007-05-15 		Show GitHub Exploit DB Packet Storm