Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
4081 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
4082 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
4083 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
4084 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
4085 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
4086 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
4087 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
4088 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
4089 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
4090 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
4091 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
4092 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
4093 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
4094 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
4095 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
4096 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
4097 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
4098 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
4099 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
4100 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
4101 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
4102 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
4103 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
4104 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
4105 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
4106 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
4107 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
4108 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
4109 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
4110 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
4111 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
4112 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
4113 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
4114 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
4115 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
4081 7.5
5.0 		HIGH
Network 		The default configuration on OpenSSL before 0.9.8 uses MD5 for creating message digests instead of a more cryptographically strong algorithm, which makes it easier for remote attackers to forge certi… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2005-2946 cpe:2.3:o:canonical:ubuntu_linux:5.04:*
cpe:2.3:o:canonical:ubuntu_linux:4.10:* 		2024-02-9 12:13
2005-09-17 		Show GitHub Exploit DB Packet Storm
4082 -
3.6 		LOW The raw_sendmsg function in the Linux kernel 2.6 before 2.6.13.1 allows local users to cause a denial of service (change hardware state) or read from arbitrary memory via crafted input. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2005-2492 cpe:2.3:o:canonical:ubuntu_linux:5.04:*
cpe:2.3:o:canonical:ubuntu_linux:4.10:* 		2018-10-20 00:33
2005-09-15 		Show GitHub Exploit DB Packet Storm
4083 -
10.0 		HIGH ssl_engine_kernel.c in mod_ssl before 2.8.24, when using "SSLVerifyClient optional" in the global virtual host configuration, does not properly enforce "SSLVerifyClient require" in a per-location con… NVD-CWE-noinfo
CVE-2005-2700 cpe:2.3:o:canonical:ubuntu_linux:5.04:*
cpe:2.3:o:canonical:ubuntu_linux:4.10:* 		2023-02-13 10:16
2005-09-7 		Show GitHub Exploit DB Packet Storm
4084 -
5.0 		MEDIUM Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $u… CWE-94
Code Injection 		CVE-2005-1527 cpe:2.3:o:canonical:ubuntu_linux:5.04:* 2024-02-15 01:58
2005-08-15 		Show GitHub Exploit DB Packet Storm
4085 -
5.0 		MEDIUM bzip2 allows remote attackers to cause a denial of service (hard drive consumption) via a crafted bzip2 file that causes an infinite loop (a.k.a "decompression bomb"). CWE-400
 Uncontrolled Resource Consumption 		CVE-2005-1260 cpe:2.3:o:canonical:ubuntu_linux:5.04:*
cpe:2.3:o:canonical:ubuntu_linux:4.10:* 		2020-11-14 02:07
2005-05-19 		Show GitHub Exploit DB Packet Storm
4086 -
4.6 		MEDIUM zgrep in gzip before 1.3.5 does not properly sanitize arguments, which allows local users to execute arbitrary commands via filenames that are injected into a sed script. NVD-CWE-Other
CVE-2005-0758 cpe:2.3:o:canonical:ubuntu_linux:5.04:*
cpe:2.3:o:canonical:ubuntu_linux:4.10:* 		2019-10-17 05:01
2005-05-13 		Show GitHub Exploit DB Packet Storm
4087 9.8
5.0 		CRITICAL
Network 		Integer overflow in the stralloc_readyplus function in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly… CWE-190
 Integer Overflow or Wraparound 		CVE-2005-1513 cpe:2.3:o:canonical:ubuntu_linux:20.04:* 2024-02-9 03:38
2005-05-11 		Show GitHub Exploit DB Packet Storm
4088 4.7
3.7 		MEDIUM
Local 		Race condition in cpio 2.6 and earlier allows local users to modify permissions of arbitrary files via a hard link attack on a file while it is being decompressed, whose permissions are changed by cp… CWE-59
CWE-367
Link Following
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2005-1111 cpe:2.3:o:canonical:ubuntu_linux:5.04:*
cpe:2.3:o:canonical:ubuntu_linux:4.10:* 		2024-01-27 02:07
2005-05-2 		Show GitHub Exploit DB Packet Storm
4089 7.5
5.0 		HIGH
Network 		Integer underflow in pppd in cbcp.c for ppp 2.4.1 allows remote attackers to cause a denial of service (daemon crash) via a CBCP packet with an invalid length value that causes pppd to access an inco… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2004-1002 cpe:2.3:o:canonical:ubuntu_linux:4.10:* 2024-02-9 00:43
2005-03-1 		Show GitHub Exploit DB Packet Storm
4090 -
10.0 		HIGH Multiple integer handling errors in PHP before 4.3.10 allow attackers to bypass safe mode restrictions, cause a denial of service, or execute arbitrary code via (1) a negative offset value to the shm… NVD-CWE-Other
CVE-2004-1018 cpe:2.3:o:canonical:ubuntu_linux:4.10:* 2020-12-9 03:49
2005-01-10 		Show GitHub Exploit DB Packet Storm