Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
761 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
762 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
763 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
764 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
765 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
766 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
767 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
768 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
769 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
770 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
771 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
772 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
773 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
774 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
775 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
776 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
777 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
778 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
779 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
780 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
781 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
782 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
783 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
784 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
785 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
786 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
787 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
788 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
789 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
790 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
791 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
792 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
793 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
794 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
795 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
761 5.3
5.0 		MEDIUM
Network 		An issue was discovered in the rack-cors (aka Rack CORS Middleware) gem before 1.0.4 for Ruby. It allows ../ directory traversal to access private resources because resource matching does not ensure … CWE-22
Path Traversal 		CVE-2019-18978 cpe:2.3:o:canonical:ubuntu_linux:16.04:* 2024-11-21 13:33
2019-11-15 		Show GitHub Exploit DB Packet Storm
762 6.5
4.9 		MEDIUM
Local 		Improper invalidation for page table updates by a virtual guest operating system for multiple Intel(R) Processors may allow an authenticated user to potentially enable denial of service of the host s… CWE-20
 Improper Input Validation  		CVE-2018-12207 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 12:44
2019-11-15 		Show GitHub Exploit DB Packet Storm
763 7.8
7.2 		HIGH
Local 		Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Go… NVD-CWE-noinfo
CVE-2019-0155 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 13:16
2019-11-15 		Show GitHub Exploit DB Packet Storm
764 6.5
2.1 		MEDIUM
Local 		TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may allow an authenticated user to potentially enable information disclosure via a side channel with local access. NVD-CWE-noinfo
CVE-2019-11135 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 13:20
2019-11-15 		Show GitHub Exploit DB Packet Storm
765 5.5
2.1 		MEDIUM
Local 		Insufficient access control in subsystem for Intel (R) processor graphics in 6th, 7th, 8th and 9th Generation Intel(R) Core(TM) Processor Families; Intel(R) Pentium(R) Processor J, N, Silver and Gold… NVD-CWE-noinfo
CVE-2019-0154 cpe:2.3:o:canonical:ubuntu_linux:14.04:* 2024-11-21 13:16
2019-11-15 		Show GitHub Exploit DB Packet Storm
766 7.8
7.2 		HIGH
Local 		In binder_transaction of binder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges need… CWE-787
 Out-of-bounds Write 		CVE-2019-2214 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:40
2019-11-14 		Show GitHub Exploit DB Packet Storm
767 7.8
9.3 		HIGH
Local 		In generate_jsimd_ycc_rgb_convert_neon of jsimd_arm64_neon.S, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution in an unprivileged proces… CWE-787
 Out-of-bounds Write 		CVE-2019-2201 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:40
2019-11-14 		Show GitHub Exploit DB Packet Storm
768 5.5
4.3 		MEDIUM
Local 		In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorized_keys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-ba… CWE-125
Out-of-bounds Read 		CVE-2019-18849 cpe:2.3:o:canonical:ubuntu_linux:16.04:* 2024-11-21 13:33
2019-11-11 		Show GitHub Exploit DB Packet Storm
769 6.3
4.3 		MEDIUM
Local 		Lintian before 2.5.12 allows remote attackers to gather information about the "host" system using crafted symlinks. CWE-59
Link Following 		CVE-2013-1429 cpe:2.3:o:canonical:ubuntu_linux:12.04:* 2024-11-21 10:49
2019-11-8 		Show GitHub Exploit DB Packet Storm
770 7.5
7.8 		HIGH
Network 		A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platfo… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-18813 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:33
2019-11-8 		Show GitHub Exploit DB Packet Storm