Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1704 CRITICAL 140 HIGH 597 MEDIUM 814 LOW 152
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
1551 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 7 18 16 3
1552 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 9 134 183 18
1553 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 48 321 454 51
1554 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 96 277 280 47
1555 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 76 170 212 56
1556 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
1557 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
1558 Red Hat Enterprise Linux 3 3.0 0 33 44 17
1559 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
1551 -
7.5
HIGH Buffer overflow in pattern.c in libxslt before 1.1.24 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XSL style sheet file with a lo… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2008-1767 cpe:2.3:o:redhat:enterprise_linux:5.0:*
cpe:2.3:o:redhat:enterprise_linux:4.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-04-23 09:35
2008-05-24
Show GitHub Exploit DB Packet Storm
1552 -
7.1
HIGH Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to ca… CWE-399
 Resource Management Errors
CVE-2007-5962 cpe:2.3:o:redhat:enterprise_linux:5.0:* 2026-04-23 09:35
2008-05-22
Show GitHub Exploit DB Packet Storm
1553 -
4.9
MEDIUM Linux kernel before 2.4.21 allows local users to cause a denial of service (kernel panic) via asynchronous input or output on a FIFO special file. CWE-399
 Resource Management Errors
CVE-2007-5001 cpe:2.3:o:redhat:enterprise_linux:ws_3:*
cpe:2.3:o:redhat:enterprise_linux:es_3:*
cpe:2.3:o:redhat:enterprise_lin…
2026-04-23 09:35
2008-05-8
Show GitHub Exploit DB Packet Storm
1554 -
7.1
HIGH The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service (crash) via a fragmented ESP packet in which the first fragment does not contain the entire E… CWE-16
Configuration
CVE-2007-6282 cpe:2.3:o:redhat:enterprise_linux:ws_4:*
cpe:2.3:o:redhat:enterprise_linux:es_4:*
cpe:2.3:o:redhat:enterprise_lin…
2026-04-23 09:35
2008-05-8
Show GitHub Exploit DB Packet Storm
1555 -
4.9
MEDIUM Linux kernel 2.6.18, and possibly other versions, when running on AMD64 architectures, allows local users to cause a denial of service (crash) via certain ptrace calls. CWE-399
 Resource Management Errors
CVE-2008-1615 cpe:2.3:o:redhat:enterprise_linux:ws_4:*
cpe:2.3:o:redhat:enterprise_linux:es_4:*
cpe:2.3:o:redhat:enterprise_lin…
2026-04-23 09:35
2008-05-8
Show GitHub Exploit DB Packet Storm
1556 -
6.9
MEDIUM The Replace function in the capp-lspp-config script in the (1) lspp-eal4-config-ibm and (2) capp-lspp-eal4-config-hp packages before 0.65-2 in Red Hat Enterprise Linux (RHEL) 5 uses lstat instead of … CWE-732
 Incorrect Permission Assignment for Critical Resource
CVE-2008-0884 cpe:2.3:o:redhat:enterprise_linux:5.0:* 2026-04-23 09:35
2008-04-4
Show GitHub Exploit DB Packet Storm
1557 -
7.1
HIGH The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brut… NVD-CWE-noinfo
CVE-2008-1198 cpe:2.3:o:redhat:enterprise_linux:5.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
2026-04-23 09:35
2008-03-7
Show GitHub Exploit DB Packet Storm
1558 -
4.6
MEDIUM dbus-daemon in D-Bus before 1.0.3, and 1.1.x before 1.1.20, recognizes send_interface attributes in allow directives in the security policy only for fully qualified method calls, which allows local u… CWE-863
 Incorrect Authorization
CVE-2008-0595 cpe:2.3:o:redhat:enterprise_linux:5:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*
2026-04-23 09:35
2008-03-1
Show GitHub Exploit DB Packet Storm
1559 -
7.2
HIGH The Linux kernel 2.6.9 before 2.6.9-67 in Red Hat Enterprise Linux (RHEL) 4 on Itanium (ia64) does not properly handle page faults during NUMA memory access, which allows local users to cause a denia… CWE-20
 Improper Input Validation 
CVE-2007-4130 cpe:2.3:o:redhat:enterprise_linux:4.0:*
cpe:2.3:o:redhat:enterprise_linux:4.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-04-23 09:35
2008-02-5
Show GitHub Exploit DB Packet Storm
1560 -
6.2
MEDIUM The default configuration for autofs 5 (autofs5) in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 4 and 5, does not specify the nodev mount option for the -hosts map, which allows… CWE-16
Configuration
CVE-2007-6285 cpe:2.3:o:redhat:enterprise_linux:5.0:*
cpe:2.3:o:redhat:enterprise_linux:4.0:*
2026-04-23 09:35
2007-12-21
Show GitHub Exploit DB Packet Storm