| Red Hat Enterprise Linux | Number Of NVD | 1704 | CRITICAL | 140 | HIGH | 597 | MEDIUM | 814 | LOW | 152 |
| URL | https://www.redhat.com/technologies/linux-platforms/enterprise-linux | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee. |
||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://access.redhat.com/ja/articles/16476 | ||
| 2 | https://access.redhat.com/support/policy/updates/errata | ||
| 3 | https://access.redhat.com/articles/3078 | ||
| 4 | https://access.redhat.com/security | ||
| 5 | https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 1671 | Red Hat Enterprise Linux 10.2 | 10.2 | May 19, 2026 | May 20, 2025 | 7 | 18 | 16 | 3 | |||
| 1672 | Red Hat Enterprise Linux 9 | 9.7 | Nov. 11, 2025 | May 17, 2022 | 9 | 134 | 183 | 18 | |||
| 1673 | Red Hat Enterprise Linux 8 | 8.10 | May 22, 2024 | May 7, 2019 | May 30, 2029 | 48 | 321 | 454 | 51 | ||
| 1674 | Red Hat Enterprise Linux 7 | 7.9 | Sept. 29, 2020 | Dec. 11, 2013 | Aug. 6, 2020 | June 30, 2024 | 96 | 277 | 280 | 47 | |
| 1675 | Red Hat Enterprise Linux 6 | 6.10 | June 19, 2018 | Nov. 9, 2010 | May 10, 2022 | Nov. 30, 2020 | June 30, 2024 | 76 | 170 | 212 | 56 |
| 1676 | Red Hat Enterprise Linux 5 | 5.11 | Sept. 16, 2014 | March 15, 2007 | March 31, 2017 | Nov. 30, 2020 | 24 | 59 | 89 | 40 | |
| 1677 | Red Hat Enterprise Linux 4 | 4.5 | Feb. 29, 2012 | March 31, 2017 | 5 | 30 | 29 | 16 | |||
| 1678 | Red Hat Enterprise Linux 3 | 3.0 | 0 | 33 | 44 | 17 | |||||
| 1679 | Red Hat Enterprise Linux 2 | 2.1 Update 7 | April 28, 2005 | 0 | 32 | 37 | 6 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 1671 |
- 5.0 |
MEDIUM | Ethereal 0.9.0 through 0.10.7 allows remote attackers to cause a denial of service (CPU consumption) via a certain malformed SMB packet. |
NVD-CWE-Other
|
CVE-2004-1142 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2024-02-14 10:17 2004-12-15 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1672 |
- 2.1 |
LOW | Unknown vulnerability in Linux kernel 2.x may allow local users to modify the group ID of files, such as NFS exported files in kernel 2.4. |
NVD-CWE-Other
|
CVE-2004-0497 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2017-10-11 10:29 2004-12-6 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1673 |
- 10.0 |
HIGH | The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication. |
NVD-CWE-Other
|
CVE-2004-0607 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2017-10-11 10:29 2004-12-6 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1674 |
- 5.0 |
MEDIUM | The iSNS dissector for Ethereal 0.10.3 through 0.10.4 allows remote attackers to cause a denial of service (process abort) via an integer overflow. |
NVD-CWE-Other
|
CVE-2004-0633 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2024-02-14 10:17 2004-12-6 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1675 |
- 5.0 |
MEDIUM | The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference. |
NVD-CWE-Other
|
CVE-2004-0634 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2024-02-14 10:17 2004-12-6 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1676 |
- 5.0 |
MEDIUM | The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-b… |
NVD-CWE-Other
|
CVE-2004-0635 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2024-02-14 10:17 2004-12-6 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1677 |
- 7.5 |
HIGH | Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI. |
NVD-CWE-Other
|
CVE-2004-0494 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2017-10-11 10:29 2004-11-23 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1678 |
- 5.0 |
MEDIUM | OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test … |
NVD-CWE-Other
|
CVE-2004-0081 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2021-11-9 00:48 2004-11-23 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1679 |
7.5 5.0 |
HIGH
Network |
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null… |
CWE-476
NULL Pointer Dereference |
CVE-2004-0079 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2023-12-29 00:33 2004-11-23 |
Show | GitHub Exploit DB Packet Storm | ||||
| 1680 |
- 5.0 |
MEDIUM | The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote at… |
CWE-125
Out-of-bounds Read |
CVE-2004-0112 |
cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux… |
2024-02-16 05:54 2004-11-23 |
Show | GitHub Exploit DB Packet Storm |