Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
591 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
592 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
593 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
594 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
595 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
596 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
597 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
598 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
599 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
600 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
601 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
602 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
603 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
604 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
605 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
606 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
607 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
608 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
609 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
610 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
611 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
612 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
613 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
614 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
615 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
616 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
617 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
618 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
619 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
620 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
621 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
622 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
623 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
624 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
625 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
591 7.5
5.0 		HIGH
Network 		xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certain end-of-file situation. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2020-7595 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:37
2020-01-22 		Show GitHub Exploit DB Packet Storm
592 8.1
9.3 		HIGH
Network 		storeBackup.pl in storeBackup through 3.5 relies on the /tmp/storeBackup.lock pathname, which allows symlink attacks that possibly lead to privilege escalation. (Local users can also create a plain f… CWE-59
Link Following 		CVE-2020-7040 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:36
2020-01-22 		Show GitHub Exploit DB Packet Storm
593 6.5
4.0 		MEDIUM
Network 		There is a use-after-free issue in all samba 4.9.x versions before 4.9.18, all samba 4.10.x versions before 4.10.12 and all samba 4.11.x versions before 4.11.5, essentially due to a call to realloc()… CWE-416
 Use After Free 		CVE-2019-19344 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:34
2020-01-22 		Show GitHub Exploit DB Packet Storm
594 6.5
2.6 		MEDIUM
Network 		All samba versions 4.9.x before 4.9.18, 4.10.x before 4.10.12 and 4.11.x before 4.11.5 have an issue where if it is set with "log level = 3" (or above) then the string obtained from the client, after… CWE-125
Out-of-bounds Read 		CVE-2019-14907 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:27
2020-01-22 		Show GitHub Exploit DB Packet Storm
595 5.4
5.5 		MEDIUM
Network 		There is an issue in all samba 4.11.x versions before 4.11.5, all samba 4.10.x versions before 4.10.12 and all samba 4.9.x versions before 4.9.18, where the removal of the right to create or modify a… NVD-CWE-noinfo
CVE-2019-14902 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:27
2020-01-22 		Show GitHub Exploit DB Packet Storm
596 2.4
2.1 		LOW
Physics 		An issue was discovered in button_open in login/logind-button.c in systemd before 243. When executing the udevadm trigger command, a memory leak may occur. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-20386 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:38
2020-01-21 		Show GitHub Exploit DB Packet Storm
597 5.5
1.9 		MEDIUM
Local 		Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via l… NVD-CWE-noinfo
CVE-2019-14615 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:27
2020-01-18 		Show GitHub Exploit DB Packet Storm
598 9.8
6.8 		CRITICAL
Network 		In SaltStack Salt through 2019.2.0, the salt-api NET API with the ssh client enabled is vulnerable to command injection. This allows an unauthenticated attacker with network access to the API endpoin… CWE-77
Command Injection 		CVE-2019-17361 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:* 		2024-11-21 13:32
2020-01-17 		Show GitHub Exploit DB Packet Storm
599 6.5
7.1 		MEDIUM
Network 		A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-15961 cpe:2.3:o:canonical:ubuntu_linux:14.04:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:* 		2024-11-21 13:29
2020-01-16 		Show GitHub Exploit DB Packet Storm
600 3.1
3.5 		LOW
Network 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected are 8.0.18 and prior. Difficult to exploit vulnerability allows… NVD-CWE-noinfo
CVE-2020-2694 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:26
2020-01-16 		Show GitHub Exploit DB Packet Storm