Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
511 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
512 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
513 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
514 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
515 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
516 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
517 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
518 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
519 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
520 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
521 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
522 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
523 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
524 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
525 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
526 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
527 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
528 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
529 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
530 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
531 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
532 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
533 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
534 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
535 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
536 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
537 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
538 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
539 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
540 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
541 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
542 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
543 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
544 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
545 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
511 6.1
5.8 		MEDIUM
Network 		In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self-referential might be fooled by encoded newlines and redirect instead to an an unexpected URL… CWE-601
Open Redirect 		CVE-2020-1927 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:11
2020-04-2 		Show GitHub Exploit DB Packet Storm
512 5.3
5.0 		MEDIUM
Network 		In Apache HTTP Server 2.4.0 to 2.4.41, mod_proxy_ftp may use uninitialized memory when proxying to a malicious FTP server. CWE-908
 Use of Uninitialized Resource 		CVE-2020-1934 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:11
2020-04-2 		Show GitHub Exploit DB Packet Storm
513 8.8
6.8 		HIGH
Network 		In PHP versions 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while using mb_strtolower() function with UTF-32LE encoding, certain invalid strings could cause PHP to overwrite stack-allocated buffer. Thi… CWE-787
 Out-of-bounds Write 		CVE-2020-7065 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-04-1 		Show GitHub Exploit DB Packet Storm
514 5.4
5.8 		MEDIUM
Network 		In PHP versions 7.2.x below 7.2.9, 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while parsing EXIF data with exif_read_data() function, it is possible for malicious data to cause PHP to read one byte of… CWE-125
Out-of-bounds Read 		CVE-2020-7064 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-04-1 		Show GitHub Exploit DB Packet Storm
515 9.8
7.5 		CRITICAL
Network 		Mozilla developers reported memory safety bugs present in Firefox and Thunderbird 68.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these co… CWE-787
 Out-of-bounds Write 		CVE-2020-6814 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-03-26 		Show GitHub Exploit DB Packet Storm
516 8.8
6.8 		HIGH
Network 		The 'Copy as cURL' feature of Devtools' network tab did not properly escape the HTTP method of a request, which can be controlled by the website. If a user used the 'Copy as Curl' feature and pasted … CWE-77
Command Injection 		CVE-2020-6811 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-03-26 		Show GitHub Exploit DB Packet Storm
517 8.8
6.8 		HIGH
Network 		When a device was changed while a stream was about to be destroyed, the <code>stream-reinit</code> task may have been executed after the stream was destroyed, causing a use-after-free and a potential… CWE-416
 Use After Free 		CVE-2020-6807 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-03-26 		Show GitHub Exploit DB Packet Storm
518 8.8
6.8 		HIGH
Network 		By carefully crafting promise resolutions, it was possible to cause an out-of-bounds read off the end of an array resized during script execution. This could have led to memory corruption and a poten… CWE-125
Out-of-bounds Read 		CVE-2020-6806 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-03-26 		Show GitHub Exploit DB Packet Storm
519 8.8
6.8 		HIGH
Network 		When removing data about an origin whose tab was recently closed, a use-after-free could occur in the Quota manager, resulting in a potentially exploitable crash. This vulnerability affects Thunderbi… CWE-416
 Use After Free 		CVE-2020-6805 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-03-26 		Show GitHub Exploit DB Packet Storm
520 5.3
5.0 		MEDIUM
Network 		The first time AirPods are connected to an iPhone, they become named after the user's name by default (e.g. Jane Doe's AirPods.) Websites with camera or microphone permission are able to enumerate de… CWE-200
Information Exposure 		CVE-2020-6812 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-03-26 		Show GitHub Exploit DB Packet Storm