Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1704 CRITICAL 140 HIGH 597 MEDIUM 814 LOW 152
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
1671 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 7 18 16 3
1672 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 9 134 183 18
1673 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 48 321 454 51
1674 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 96 277 280 47
1675 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 76 170 212 56
1676 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
1677 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
1678 Red Hat Enterprise Linux 3 3.0 0 33 44 17
1679 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
1671 -
5.0
MEDIUM Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed SMB packet. NVD-CWE-Other
CVE-2004-1142 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-02-14 10:17
2004-12-15
Show GitHub Exploit DB Packet Storm
1672 -
2.1
LOW Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. NVD-CWE-Other
CVE-2004-0497 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2017-10-11 10:29
2004-12-6
Show GitHub Exploit DB Packet Storm
1673 -
10.0
HIGH The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication. NVD-CWE-Other
CVE-2004-0607 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2017-10-11 10:29
2004-12-6
Show GitHub Exploit DB Packet Storm
1674 -
5.0
MEDIUM The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. NVD-CWE-Other
CVE-2004-0633 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-02-14 10:17
2004-12-6
Show GitHub Exploit DB Packet Storm
1675 -
5.0
MEDIUM The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference. NVD-CWE-Other
CVE-2004-0634 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-02-14 10:17
2004-12-6
Show GitHub Exploit DB Packet Storm
1676 -
5.0
MEDIUM The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-b… NVD-CWE-Other
CVE-2004-0635 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-02-14 10:17
2004-12-6
Show GitHub Exploit DB Packet Storm
1677 -
7.5
HIGH Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI. NVD-CWE-Other
CVE-2004-0494 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2017-10-11 10:29
2004-11-23
Show GitHub Exploit DB Packet Storm
1678 -
5.0
MEDIUM OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test … NVD-CWE-Other
CVE-2004-0081 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2021-11-9 00:48
2004-11-23
Show GitHub Exploit DB Packet Storm
1679 7.5
5.0
HIGH
Network
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null… CWE-476
 NULL Pointer Dereference
CVE-2004-0079 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2023-12-29 00:33
2004-11-23
Show GitHub Exploit DB Packet Storm
1680 -
5.0
MEDIUM The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote at… CWE-125
Out-of-bounds Read
CVE-2004-0112 cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux:3.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-02-16 05:54
2004-11-23
Show GitHub Exploit DB Packet Storm