Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
411 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
412 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
413 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
414 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
415 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
416 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
417 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
418 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
419 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
420 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
421 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
422 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
423 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
424 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
425 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
426 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
427 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
428 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
429 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
430 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
431 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
432 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
433 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
434 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
435 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
436 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
437 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
438 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
439 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
440 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
441 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
442 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
443 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
444 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
445 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
411 6.4
4.4 		MEDIUM
Local 		There is a use-after-free in kernel versions before 5.5 due to a race condition between the release of ptp_clock and cdev while resource deallocation. When a (high privileged) process allocates a ptp… CWE-416
 Use After Free 		CVE-2020-10690 cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:* 		2024-11-21 13:55
2020-05-9 		Show GitHub Exploit DB Packet Storm
412 2.2
3.5 		LOW
Network 		In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in 2.0.0. - CVE-2020-11049 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
413 2.2
3.5 		LOW
Network 		In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bounds read. It only allows to abort a session. No data extraction is possible. This has been fixed in 2.0.0. - CVE-2020-11048 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
414 5.9
4.9 		MEDIUM
Network 		In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. A malicious server can extract up to 8 bytes of client memory with a manipulated me… - CVE-2020-11047 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
415 2.2
3.5 		LOW
Network 		In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read. - CVE-2020-11046 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
416 3.3
4.9 		LOW
Network 		In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bound read in in update_read_bitmap_data that allows client memory to be read to an image buffer. The result displayed on screen as colour. - CVE-2020-11045 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
417 2.2
3.5 		LOW
Network 		In FreeRDP greater than 1.2 and before 2.0.0, a double free in update_read_cache_bitmap_v3_order crashes the client application if corrupted data from a manipulated server is parsed. This has been pa… - CVE-2020-11044 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
418 5.9
4.9 		MEDIUM
Network 		In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in update_read_icon_info. It allows reading a attacker-defined amount of client memory (32bit unsigned -> 4GB) to an inter… - CVE-2020-11042 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-05-8 		Show GitHub Exploit DB Packet Storm
419 5.4
5.5 		MEDIUM
Network 		An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. The EC2 API doesn't have a signature TTL check for AWS Signature V4. An attacker can sniff the Authorization header, and then … CWE-347
CWE-294
 Improper Verification of Cryptographic Signature
Authentication Bypass by Capture-replay  		CVE-2020-12692 cpe:2.3:o:canonical:ubuntu_linux:18.04:* 2024-11-21 14:00
2020-05-7 		Show GitHub Exploit DB Packet Storm
420 8.8
6.5 		HIGH
Network 		An issue was discovered in OpenStack Keystone before 15.0.1, and 16.0.0. Any authenticated user can create an EC2 credential for themselves for a project that they have a specified role on, and then … CWE-863
 Incorrect Authorization 		CVE-2020-12691 cpe:2.3:o:canonical:ubuntu_linux:18.04:* 2024-11-21 14:00
2020-05-7 		Show GitHub Exploit DB Packet Storm