Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1711 CRITICAL 141 HIGH 603 MEDIUM 814 LOW 152
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
421 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 16 3
422 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 140 183 18
423 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 327 454 51
424 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 283 280 47
425 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
426 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
427 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
428 Red Hat Enterprise Linux 3 3.0 0 33 44 17
429 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
421 4.3
4.0
MEDIUM
Network
Users with the capability to configure badge criteria (teachers and managers by default) were able to configure course badges with profile field criteria, which should only be available for site badg… CWE-863
 Incorrect Authorization
CVE-2022-0984 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 15:39
2022-04-30
Show GitHub Exploit DB Packet Storm
422 8.2
4.6
HIGH
Local
A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values `cursor->header.width` and `cursor->header.height` can lead to the allocation of a small cursor… CWE-362
CWE-120
Race Condition
Classic Buffer Overflow
CVE-2021-4207 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 15:37
2022-04-30
Show GitHub Exploit DB Packet Storm
423 8.2
4.6
HIGH
Local
A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursor_alloc() function can lead to the allocation of a small cursor object followed by a subsequent heap-base… CWE-190
CWE-120
CWE-131
 Integer Overflow or Wraparound
Classic Buffer Overflow
Incorrect Calculation of Buffer Size
CVE-2021-4206 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 15:37
2022-04-30
Show GitHub Exploit DB Packet Storm
424 7.1
3.6
HIGH
Local
A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system cras… NVD-CWE-noinfo
CVE-2022-1353 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:40
2022-04-30
Show GitHub Exploit DB Packet Storm
425 8.8
6.8
HIGH
Network
A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability… CWE-269
 Improper Privilege Management
CVE-2022-1227 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 15:40
2022-04-30
Show GitHub Exploit DB Packet Storm
426 7.0
6.9
HIGH
Local
A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PC… CWE-362
CWE-416
Race Condition
 Use After Free
CVE-2022-1048 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:39
2022-04-30
Show GitHub Exploit DB Packet Storm
427 5.3
5.0
MEDIUM
Network
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library. CWE-787
 Out-of-bounds Write
CVE-2021-42781 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 15:28
2022-04-19
Show GitHub Exploit DB Packet Storm
428 5.3
5.0
MEDIUM
Network
A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library. CWE-252
 Unchecked Return Value
CVE-2021-42780 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 15:28
2022-04-19
Show GitHub Exploit DB Packet Storm
429 5.3
5.0
MEDIUM
Network
A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid. CWE-416
 Use After Free
CVE-2021-42779 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 15:28
2022-04-19
Show GitHub Exploit DB Packet Storm
430 5.3
5.0
MEDIUM
Network
A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo. CWE-415
 Double Free
CVE-2021-42778 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 15:28
2022-04-19
Show GitHub Exploit DB Packet Storm