Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
841 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
842 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
843 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
844 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
845 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
846 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
847 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
848 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
849 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
850 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
851 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
852 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
853 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
854 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
855 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
856 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
857 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
858 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
859 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
860 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
861 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
862 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
863 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
864 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
865 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
866 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
867 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
868 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
869 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
870 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
871 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
872 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
873 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
874 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
875 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
841 9.1
6.4 		CRITICAL
Network 		Amphora Images in OpenStack Octavia >=0.10.0 <2.1.2, >=3.0.0 <3.2.0, >=4.0.0 <4.1.0 allows anyone with access to the management network to bypass client-certificate based authentication and retrieve … CWE-287
Improper Authentication 		CVE-2019-17134 cpe:2.3:o:canonical:ubuntu_linux:19.04:* 2024-11-21 13:31
2019-10-9 		Show GitHub Exploit DB Packet Storm
842 9.8
7.5 		CRITICAL
Network 		libsoup from versions 2.65.1 until 2.68.1 have a heap-based buffer over-read because soup_ntlm_parse_challenge() in soup-auth-ntlm.c does not properly check an NTLM message's length before proceeding… CWE-125
Out-of-bounds Read 		CVE-2019-17266 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:31
2019-10-7 		Show GitHub Exploit DB Packet Storm
843 9.8
7.5 		CRITICAL
Network 		In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow. CWE-120
Classic Buffer Overflow 		CVE-2019-17133 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2019-10-4 		Show GitHub Exploit DB Packet Storm
844 7.5
5.0 		HIGH
Network 		Unbound before 1.9.4 accesses uninitialized memory, which allows remote attackers to trigger a crash via a crafted NOTIFY query. The source IP address of the query must match an access-control rule. CWE-755
CWE-908
 Improper Handling of Exceptional Conditions
 Use of Uninitialized Resource 		CVE-2019-16866 cpe:2.3:o:canonical:ubuntu_linux:19.04:* 2024-11-21 13:31
2019-10-4 		Show GitHub Exploit DB Packet Storm
845 5.3
5.0 		MEDIUM
Network 		sf-pcapng.c in libpcap before 1.9.1 does not properly validate the PHB header length before allocating memory. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-15165 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:28
2019-10-4 		Show GitHub Exploit DB Packet Storm
846 7.5
5.0 		HIGH
Network 		lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. CWE-120
Classic Buffer Overflow 		CVE-2019-15166 cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:28
2019-10-4 		Show GitHub Exploit DB Packet Storm
847 3.3
2.1 		LOW
Local 		base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw sock… CWE-862
 Missing Authorization 		CVE-2019-17055 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2019-10-1 		Show GitHub Exploit DB Packet Storm
848 3.3
2.1 		LOW
Local 		ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka C… CWE-276
Incorrect Default Permissions  		CVE-2019-17052 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2019-10-1 		Show GitHub Exploit DB Packet Storm
849 6.1
4.3 		MEDIUM
Network 		The documentation XML-RPC server in Python through 2.7.16, 3.x through 3.6.9, and 3.7.x through 3.7.4 has XSS via the server_title field. This occurs in Lib/DocXMLRPCServer.py in Python 2.x, and in L… CWE-79
Cross-site Scripting 		CVE-2019-16935 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:31
2019-09-28 		Show GitHub Exploit DB Packet Storm
850 9.8
7.5 		CRITICAL
Network 		Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in string_vformat in string.c involving a long EHLO command. CWE-787
 Out-of-bounds Write 		CVE-2019-16928 cpe:2.3:o:canonical:ubuntu_linux:19.04:* 2025-03-7 23:24
2019-09-28 		Show GitHub Exploit DB Packet Storm