Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
621 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
622 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
623 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
624 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
625 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
626 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
627 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
628 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
629 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
630 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
631 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
632 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
633 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
634 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
635 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
636 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
637 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
638 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
639 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
640 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
641 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
642 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
643 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
644 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
645 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
646 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
647 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
648 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
649 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
650 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
651 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
652 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
653 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
654 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
655 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
621 7.5
5.0 		HIGH
Network 		PySAML2 before 5.0.0 does not check that the signature in a SAML document is enveloped and thus signature wrapping is effective, i.e., it is affected by XML Signature Wrapping (XSW). The signature in… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2020-5390 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 14:34
2020-01-14 		Show GitHub Exploit DB Packet Storm
622 5.3
4.3 		MEDIUM
Network 		NGINX before 1.17.7, with certain error_page configurations, allows HTTP request smuggling, as demonstrated by the ability of an attacker to read unauthorized web pages in environments where NGINX is… CWE-444
HTTP Request Smuggling 		CVE-2019-20372 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 13:38
2020-01-10 		Show GitHub Exploit DB Packet Storm
623 8.8
6.8 		HIGH
Network 		Mozilla developers reported memory safety bugs present in Firefox 71. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl… CWE-787
 Out-of-bounds Write 		CVE-2019-17025 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
624 6.5
4.3 		MEDIUM
Network 		After a HelloRetryRequest has been sent, the client may negotiate a lower protocol that TLS 1.3, resulting in an invalid state transition in the TLS State Machine. If the client gets into this state,… CWE-287
Improper Authentication 		CVE-2019-17023 cpe:2.3:o:canonical:ubuntu_linux:20.04:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
625 6.5
4.3 		MEDIUM
Network 		If an XML file is served with a Content Security Policy and the XML file includes an XSL stylesheet, the Content Security Policy will not be applied to the contents of the XSL stylesheet. If the XSL … CWE-611
XXE 		CVE-2019-17020 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
626 8.8
6.8 		HIGH
Network 		Mozilla developers reported memory safety bugs present in Firefox 70 and Firefox ESR 68.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write 		CVE-2019-17012 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
627 7.5
5.1 		HIGH
Network 		Under certain conditions, when retrieving a document from a DocShell in the antitracking code, a race condition could cause a use-after-free condition and a potentially exploitable crash. This vulner… CWE-362
Race Condition 		CVE-2019-17011 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
628 7.5
5.1 		HIGH
Network 		Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.… CWE-362
Race Condition 		CVE-2019-17010 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
629 8.8
6.8 		HIGH
Network 		The plain text serializer used a fixed-size array for the number of <ol> elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a poten… CWE-787
 Out-of-bounds Write 		CVE-2019-17005 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm
630 8.8
6.8 		HIGH
Network 		Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write 		CVE-2019-17024 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2020-01-9 		Show GitHub Exploit DB Packet Storm