Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Ubuntu Number Of NVD 4093 CRITICAL 341 HIGH 1595 MEDIUM 1941 LOW 216
URL https://ubuntu.com/
Explanation A release without LTS is a normal release and provides support for 9 months after it is released.
LTS (Long Term Support) provides support for five years.
After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag
  • Linux
Add Information URL
No Type Name URL
1 https://ubuntu.com/about/release-cycle
2 https://wiki.ubuntu.com/
3 https://wiki.ubuntu.com/Releases
4 https://ubuntu.com/licensing
5 https://ubuntu.com/security/notices
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
851 Ubuntu 24 24.04.3 Aug. 7, 2025 April 25, 2024 0 0 1 0
852 Ubuntu 23.04 23.04 April 24, 2023 April 24, 2023 April 30, 2024 1 5 2 0
853 Ubuntu 22.04 LTS 22.04.5 Sept. 12, 2024 April 21, 2022 April 30, 2027 April 30, 2032 1 25 11 0
854 Ubuntu 21.10 21.10 Oct. 14, 2021 Oct. 14, 2021 June 14, 2022 June 14, 2022 1 18 19 0
855 Ubuntu 21.04 21.04 April 22, 2021 April 22, 2021 Jan. 30, 2022 0 12 11 0
856 Ubuntu 20.10 20.10 Oct. 22, 2020 Oct. 22, 2020 July 30, 2021 0 5 13 1
857 Ubuntu 20.04 LTS 20.04.6 March 23, 2023 April 23, 2020 April 30, 2025 April 30, 2030 21 144 239 32
858 Ubuntu 19.10 Oct. 17, 2019 July 30, 2020 32 133 227 44
859 Ubuntu 19.04 April 18, 2019 Jan. 30, 2020 45 126 184 23
860 Ubuntu 18.10 Oct. 18, 2018 July 31, 2019 66 174 182 5
861 Ubuntu 18.04 LTS 18.04.6 Sept. 17, 2021 April 26, 2018 April 30, 2023 April 30, 2028 202 645 891 80
862 Ubuntu 17.10 Oct. 18, 2017 July 19, 2018 4 18 14 0
863 Ubuntu 17.04 April 13, 2017 July 20, 2017 4 18 14 0
864 Ubuntu 16.10 Oct. 13, 2016 July 28, 2016 6 24 8 0
865 Ubuntu 16.04 LTS 16.04.7 Aug. 13, 2020 April 21, 2016 April 30, 2021 April 30, 2024 239 852 1060 83
866 Ubuntu 15.10 Oct. 22, 2015 Feb. 4, 2016 20 148 162 24
867 Ubuntu 15.04 April 23, 2015 July 23, 2015 5 100 130 29
868 Ubuntu 14.10 Oct. 23, 2014 July 14, 2014 0 3 1 0
869 Ubuntu 14.04 LTS 14.04.6 March 7, 2019 April 17, 2014 April 30, 2019 April 30, 2022 216 844 1015 82
870 Ubuntu 13.10 Oct. 17, 2013 July 14, 2014 15 56 68 15
871 Ubuntu 13.04 April 25, 2013 Jan. 27, 2014 6 16 60 9
872 Ubuntu 12.04 LTS April 26, 2012 April 28, 2017 April 30, 2019 90 577 669 83
873 Ubuntu 11.10 Oct. 13, 2011 May 9, 2013 1 111 108 13
874 Ubuntu 11.04 April 28, 2011 Oct. 28, 2012 1 56 56 8
875 Ubuntu 10.10 Oct. 10, 2010 April 10, 2012 2 47 52 17
876 Ubuntu 9.10 Oct. 29, 2009 April 30, 2011 5 56 56 16
877 Ubuntu 9.04 April 23, 2009 Oct. 23, 2010 3 46 57 8
878 Ubuntu 8.10 Oct. 30, 2008 April 30, 2010 2 49 47 6
879 Ubuntu 8.04 LTS 8.04.4 Jan. 28, 2010 April 24, 2008 May 9, 2013 7 99 119 18
880 Ubuntu 7.10 Oct. 18, 2007 April 18, 2009 3 48 37 5
881 Ubuntu 7.04 April 19, 2007 Oct. 19, 2008 4 46 28 4
882 Ubuntu 6.10 Oct. 26, 2006 April 26, 2008 2 33 32 4
883 Ubuntu 5.10 Oct. 13, 2005 April 13, 2007 0 22 19 1
884 Ubuntu 5.04 April 8, 2005 Oct. 31, 2006 0 14 13 2
885 Ubuntu 4.10 Oct. 20, 2004 April 30, 2006 1 13 8 2
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
851 6.5
4.3 		MEDIUM
Network 		In libvpx, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure with no additional execution privileges needed. User interacti… CWE-20
 Improper Input Validation  		CVE-2019-9433 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:51
2019-09-28 		Show GitHub Exploit DB Packet Storm
852 6.5
7.1 		MEDIUM
Network 		In libvpx, there is a possible resource exhaustion due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed. User interaction is ne… CWE-20
 Improper Input Validation  		CVE-2019-9371 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:51
2019-09-28 		Show GitHub Exploit DB Packet Storm
853 6.5
4.3 		MEDIUM
Network 		In libvpx, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is n… CWE-125
Out-of-bounds Read 		CVE-2019-9325 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:51
2019-09-28 		Show GitHub Exploit DB Packet Storm
854 8.8
6.8 		HIGH
Network 		In libexif, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege in the media content provider with no additional execution privileges… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-9278 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:51
2019-09-28 		Show GitHub Exploit DB Packet Storm
855 7.5
5.0 		HIGH
Network 		In libvpx, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is n… CWE-125
Out-of-bounds Read 		CVE-2019-9232 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:51
2019-09-28 		Show GitHub Exploit DB Packet Storm
856 8.8
6.8 		HIGH
Network 		Mozilla developers and community members reported memory safety bugs present in Firefox 68, Firefox ESR 68, and Firefox 60.8. Some of these bugs showed evidence of memory corruption and we presume th… CWE-787
 Out-of-bounds Write 		CVE-2019-11740 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:21
2019-09-28 		Show GitHub Exploit DB Packet Storm
857 7.5
5.0 		HIGH
Network 		Netty before 4.1.42.Final mishandles whitespace before the colon in HTTP headers (such as a "Transfer-Encoding : chunked" line), which leads to HTTP request smuggling. CWE-444
HTTP Request Smuggling 		CVE-2019-16869 cpe:2.3:o:canonical:ubuntu_linux:18.04:* 2024-11-21 13:31
2019-09-27 		Show GitHub Exploit DB Packet Storm
858 6.1
4.3 		MEDIUM
Network 		In Apache HTTP Server 2.4.0-2.4.39, a limited cross-site scripting issue was reported affecting the mod_proxy error page. An attacker could cause the link on the error page to be malformed and instea… CWE-79
Cross-site Scripting 		CVE-2019-10092 cpe:2.3:o:canonical:ubuntu_linux:19.04:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*
cpe:2.3:o:canonical:ubuntu_linu… 		2024-11-21 13:18
2019-09-27 		Show GitHub Exploit DB Packet Storm
859 6.1
4.3 		MEDIUM
Network 		An XSS vulnerability was discovered in noVNC before 0.6.2 in which the remote VNC server could inject arbitrary HTML into the noVNC web page via the messages propagated to the status field, such as t… CWE-79
Cross-site Scripting 		CVE-2017-18635 cpe:2.3:o:canonical:ubuntu_linux:16.04:* 2024-11-21 12:20
2019-09-26 		Show GitHub Exploit DB Packet Storm
860 7.5
5.0 		HIGH
Network 		runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a m… CWE-863
 Incorrect Authorization 		CVE-2019-16884 cpe:2.3:o:canonical:ubuntu_linux:19.10:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:* 		2024-11-21 13:31
2019-09-26 		Show GitHub Exploit DB Packet Storm