Software Detail

Software Informaton Top

Operating Systems

Software Detail

Ubuntu

Number Of NVD

4093

CRITICAL

341

HIGH

1595

MEDIUM

1941

LOW

216

URL	https://ubuntu.com/
Explanation	A release without LTS is a normal release and provides support for 9 months after it is released. LTS (Long Term Support) provides support for five years. After the end of LTS, we also offer a service that provides extended support (about 5 years) for a fee.
Tag	Linux

Add Information URL

No	Type	Name	URL
1			https://ubuntu.com/about/release-cycle
2			https://wiki.ubuntu.com/
3			https://wiki.ubuntu.com/Releases
4			https://ubuntu.com/licensing
5			https://ubuntu.com/security/notices

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Extended for a fee	Critical	High	Medium	Low
941	Ubuntu 24	24.04.3	Aug. 7, 2025	April 25, 2024			0	0	1	0
942	Ubuntu 23.04	23.04	April 24, 2023	April 24, 2023	April 30, 2024		1	5	2	0
943	Ubuntu 22.04 LTS	22.04.5	Sept. 12, 2024	April 21, 2022	April 30, 2027	April 30, 2032	1	25	11	0
944	Ubuntu 21.10	21.10	Oct. 14, 2021	Oct. 14, 2021	June 14, 2022	June 14, 2022	1	18	19	0
945	Ubuntu 21.04	21.04	April 22, 2021	April 22, 2021	Jan. 30, 2022		0	12	11	0
946	Ubuntu 20.10	20.10	Oct. 22, 2020	Oct. 22, 2020	July 30, 2021		0	5	13	1
947	Ubuntu 20.04 LTS	20.04.6	March 23, 2023	April 23, 2020	April 30, 2025	April 30, 2030	21	144	239	32
948	Ubuntu 19.10			Oct. 17, 2019	July 30, 2020		32	133	227	44
949	Ubuntu 19.04			April 18, 2019	Jan. 30, 2020		45	126	184	23
950	Ubuntu 18.10			Oct. 18, 2018	July 31, 2019		66	174	182	5
951	Ubuntu 18.04 LTS	18.04.6	Sept. 17, 2021	April 26, 2018	April 30, 2023	April 30, 2028	202	645	891	80
952	Ubuntu 17.10			Oct. 18, 2017	July 19, 2018		4	18	14	0
953	Ubuntu 17.04			April 13, 2017	July 20, 2017		4	18	14	0
954	Ubuntu 16.10			Oct. 13, 2016	July 28, 2016		6	24	8	0
955	Ubuntu 16.04 LTS	16.04.7	Aug. 13, 2020	April 21, 2016	April 30, 2021	April 30, 2024	239	852	1060	83
956	Ubuntu 15.10			Oct. 22, 2015	Feb. 4, 2016		20	148	162	24
957	Ubuntu 15.04			April 23, 2015	July 23, 2015		5	100	130	29
958	Ubuntu 14.10			Oct. 23, 2014	July 14, 2014		0	3	1	0
959	Ubuntu 14.04 LTS	14.04.6	March 7, 2019	April 17, 2014	April 30, 2019	April 30, 2022	216	844	1015	82
960	Ubuntu 13.10			Oct. 17, 2013	July 14, 2014		15	56	68	15
961	Ubuntu 13.04			April 25, 2013	Jan. 27, 2014		6	16	60	9
962	Ubuntu 12.04 LTS			April 26, 2012	April 28, 2017	April 30, 2019	90	577	669	83
963	Ubuntu 11.10			Oct. 13, 2011	May 9, 2013		1	111	108	13
964	Ubuntu 11.04			April 28, 2011	Oct. 28, 2012		1	56	56	8
965	Ubuntu 10.10			Oct. 10, 2010	April 10, 2012		2	47	52	17
966	Ubuntu 9.10			Oct. 29, 2009	April 30, 2011		5	56	56	16
967	Ubuntu 9.04			April 23, 2009	Oct. 23, 2010		3	46	57	8
968	Ubuntu 8.10			Oct. 30, 2008	April 30, 2010		2	49	47	6
969	Ubuntu 8.04 LTS	8.04.4	Jan. 28, 2010	April 24, 2008	May 9, 2013		7	99	119	18
970	Ubuntu 7.10			Oct. 18, 2007	April 18, 2009		3	48	37	5
971	Ubuntu 7.04			April 19, 2007	Oct. 19, 2008		4	46	28	4
972	Ubuntu 6.10			Oct. 26, 2006	April 26, 2008		2	33	32	4
973	Ubuntu 5.10			Oct. 13, 2005	April 13, 2007		0	22	19	1
974	Ubuntu 5.04			April 8, 2005	Oct. 31, 2006		0	14	13	2
975	Ubuntu 4.10			Oct. 20, 2004	April 30, 2006		1	13	8	2

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
941	9.8 7.5	CRITICAL Network	LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. Protection …	CWE-20 Improper Input Validation	CVE-2019-9851	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:52 2019-08-16	Show	GitHub Exploit DB Packet Storm

942	9.8 7.5	CRITICAL Network	LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. LibreOffice…	CWE-20 Improper Input Validation	CVE-2019-9850	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:52 2019-08-16	Show	GitHub Exploit DB Packet Storm

943	5.9 4.3	MEDIUM Network	The implementations of SAE and EAP-pwd in hostapd and wpa_supplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cache access patterns when…	CWE-203 Information Exposure Through Discrepancy	CVE-2019-13377	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*	2024-11-21 13:24 2019-08-16	Show	GitHub Exploit DB Packet Storm

944	7.5 5.0	HIGH Network	Due to incorrect string termination, Squid cachemgr.cgi 4.0 through 4.7 may access unallocated memory. On systems with memory access protections, this can cause the CGI process to terminate unexpecte…	NVD-CWE-noinfo	CVE-2019-12854	cpe:2.3:o:canonical:ubuntu_linux:19.10:* cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:23 2019-08-16	Show	GitHub Exploit DB Packet Storm

945	8.1 4.8	HIGH Adjacent	The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This al…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-9506	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:51 2019-08-15	Show	GitHub Exploit DB Packet Storm

946	7.5 7.8	HIGH Network	Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-s…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-9518	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:51 2019-08-14	Show	GitHub Exploit DB Packet Storm

947	7.5 7.8	HIGH Network	Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without const…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-9517	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:51 2019-08-14	Show	GitHub Exploit DB Packet Storm

948	6.5 6.8	MEDIUM Network	Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, …	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-9516	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:51 2019-08-14	Show	GitHub Exploit DB Packet Storm

949	7.5 7.8	HIGH Network	Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-9515	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:51 2019-08-14	Show	GitHub Exploit DB Packet Storm

950	7.5 7.8	HIGH Network	Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that shou…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2019-9514	cpe:2.3:o:canonical:ubuntu_linux:19.04:* cpe:2.3:o:canonical:ubuntu_linux:18.04:* cpe:2.3:o:canonical:ubuntu_linu…	2024-11-21 13:51 2019-08-14	Show	GitHub Exploit DB Packet Storm