Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
41 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
42 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
43 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
44 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
45 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
46 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
47 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
48 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
49 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
50 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
51 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
52 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
53 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
54 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
55 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
56 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
57 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
58 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
59 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
60 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
61 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
62 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
63 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
64 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
65 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
66 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
67 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
68 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
69 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
70 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
71 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
72 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
73 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
74 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
75 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
41 6.5
- 		MEDIUM
Network 		A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. … - CVE-2021-3975 cpe:2.3:o:canonical:ubuntu_linux:21.10:* 2024-11-21 15:23
2022-08-24 		Show GitHub Exploit DB Packet Storm
42 7.5
- 		HIGH
Network 		A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An attacker could use this flaw to potentially exhaust available memory by keeping sending packet fragments. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-3905 cpe:2.3:o:canonical:ubuntu_linux:21.10:* 2024-11-21 15:22
2022-08-24 		Show GitHub Exploit DB Packet Storm
43 7.8
7.2 		HIGH
Local 		An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a differ… CWE-843
Type Confusion 		CVE-2022-34918 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 16:10
2022-07-5 		Show GitHub Exploit DB Packet Storm
44 7.8
7.2 		HIGH
Local 		Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; ver… NVD-CWE-Other
CVE-2022-29581 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 15:59
2022-05-18 		Show GitHub Exploit DB Packet Storm
45 7.8
4.6 		HIGH
Local 		A use-after-free exists in the Linux Kernel in tc_new_tfilter that could allow a local attacker to gain privilege escalation. The exploit requires unprivileged user namespaces. We recommend upgrading… CWE-416
 Use After Free 		CVE-2022-1055 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:21.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 15:39
2022-03-30 		Show GitHub Exploit DB Packet Storm
46 7.5
6.9 		HIGH
Local 		A use-after-free vulnerability was found in the virtio-net device of QEMU. It could occur when the descriptor's address belongs to the non direct access region, due to num_buffers being set after the… CWE-416
 Use After Free 		CVE-2021-3748 cpe:2.3:o:canonical:ubuntu_linux:21.10:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 15:22
2022-03-24 		Show GitHub Exploit DB Packet Storm
47 7.5
7.1 		HIGH
Network 		A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote attacker, who controls the HTTP server, to make the client script enter an infinit… CWE-400
CWE-835
 Uncontrolled Resource Consumption
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2021-3737 cpe:2.3:o:canonical:ubuntu_linux:21.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 15:22
2022-03-5 		Show GitHub Exploit DB Packet Storm
48 7.0
6.9 		HIGH
Local 		A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_d… - CVE-2021-3640 cpe:2.3:o:canonical:ubuntu_linux:21.10:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 15:22
2022-03-4 		Show GitHub Exploit DB Packet Storm
49 7.8
6.9 		HIGH
Local 		A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_… CWE-862
 Missing Authorization 		CVE-2022-0492 cpe:2.3:o:canonical:ubuntu_linux:22.04:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 15:38
2022-03-4 		Show GitHub Exploit DB Packet Storm
50 5.5
2.1 		MEDIUM
Local 		There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE… NVD-CWE-Other
CVE-2021-4115 cpe:2.3:o:canonical:ubuntu_linux:21.10:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:* 		2024-11-21 15:36
2022-02-22 		Show GitHub Exploit DB Packet Storm