Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
441 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
442 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
443 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
444 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
445 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
446 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
447 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
448 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
449 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
450 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
451 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
452 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
453 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
454 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
455 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
456 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
457 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
458 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
459 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
460 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
461 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
462 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
463 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
464 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
465 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
466 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
467 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
468 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
469 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
470 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
471 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
472 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
473 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
474 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
475 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
441 5.5
2.1 		MEDIUM
Local 		Apport creates a world writable lock file with root ownership in the world writable /var/lock/apport directory. If the apport/ directory does not exist (this is not uncommon as /var/lock is a tmpfs),… CWE-59
Link Following 		CVE-2020-8831 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:39
2020-04-23 		Show GitHub Exploit DB Packet Storm
442 6.5
2.1 		MEDIUM
Local 		A use after free vulnerability in ip_reass() in ip_input.c of libslirp 4.2.0 and prior releases allows crafted packets to cause a denial of service. CWE-416
 Use After Free 		CVE-2020-1983 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:11
2020-04-23 		Show GitHub Exploit DB Packet Storm
443 7.5
7.8 		HIGH
Network 		CServer::SendMsg in engine/server/server.cpp in Teeworlds 0.7.x before 0.7.5 allows remote attackers to shut down the server. CWE-20
 Improper Input Validation  		CVE-2020-12066 cpe:2.3:o:canonical:ubuntu_linux:20.04:* 2024-11-21 13:59
2020-04-23 		Show GitHub Exploit DB Packet Storm
444 7.5
5.0 		HIGH
Network 		An issue was discovered in Ceph through 13.2.9. A POST request with an invalid tagging XML can crash the RGW process by triggering a NULL pointer exception. CWE-476
 NULL Pointer Dereference 		CVE-2020-12059 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:* 		2024-11-21 13:59
2020-04-22 		Show GitHub Exploit DB Packet Storm
445 7.5
5.0 		HIGH
Network 		Affected versions of Git have a vulnerability whereby Git can be tricked into sending private credentials to a host controlled by an attacker. This bug is similar to CVE-2020-5260(GHSA-qm7j-c969-7j4q… CWE-522
 Insufficiently Protected Credentials 		CVE-2020-11008 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:56
2020-04-22 		Show GitHub Exploit DB Packet Storm
446 7.8
6.8 		HIGH
Local 		re2c 1.3 has a heap-based buffer overflow in Scanner::fill in parse/scanner.cc via a long lexeme. CWE-787
 Out-of-bounds Write 		CVE-2020-11958 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:* 		2024-11-21 13:58
2020-04-21 		Show GitHub Exploit DB Packet Storm
447 7.0
5.9 		HIGH
Local 		An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not properly check the array bounds when stor… CWE-787
 Out-of-bounds Write 		CVE-2020-1751 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:11
2020-04-18 		Show GitHub Exploit DB Packet Storm
448 4.4
2.1 		MEDIUM
Local 		In f2fs_xattr_generic_list of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. U… CWE-125
Out-of-bounds Read 		CVE-2020-0067 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:52
2020-04-18 		Show GitHub Exploit DB Packet Storm
449 8.8
6.8 		HIGH
Network 		A use-after-free issue exists in WebKitGTK before 2.28.1 and WPE WebKit before 2.28.1 via crafted web content that allows remote attackers to execute arbitrary code or cause a denial of service (memo… CWE-416
 Use After Free 		CVE-2020-11793 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:58
2020-04-17 		Show GitHub Exploit DB Packet Storm
450 7.5
5.0 		HIGH
Network 		Byobu Apport hook may disclose sensitive information since it automatically uploads the local user's .screenrc which may contain private hostnames, usernames and passwords. This issue affects: byobu CWE-552
 Files or Directories Accessible to External Parties 		CVE-2019-7306 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:47
2020-04-17 		Show GitHub Exploit DB Packet Storm