Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1717 CRITICAL 141 HIGH 605 MEDIUM 817 LOW 153
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
651 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 18 4
652 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 142 186 19
653 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 328 457 52
654 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 284 282 48
655 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
656 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
657 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
658 Red Hat Enterprise Linux 3 3.0 0 33 44 17
659 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
651 3.3
4.3
LOW
Local
A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the ran… CWE-190
 Integer Overflow or Wraparound
CVE-2020-27775 cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 14:21
2020-12-5
Show GitHub Exploit DB Packet Storm
652 3.3
4.3
LOW
Local
A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of a too large shift fo… CWE-190
 Integer Overflow or Wraparound
CVE-2020-27774 cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 14:21
2020-12-5
Show GitHub Exploit DB Packet Storm
653 3.3
4.3
LOW
Local
A flaw was found in ImageMagick in MagickCore/segment.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero.… CWE-369
 Divide By Zero
CVE-2020-27765 cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 14:21
2020-12-5
Show GitHub Exploit DB Packet Storm
654 3.3
4.3
LOW
Local
In RestoreMSCWarning() of /coders/pdf.c there are several areas where calls to GetPixelIndex() could result in values outside the range of representable for the unsigned char type. The patch casts th… CWE-190
 Integer Overflow or Wraparound
CVE-2020-27771 cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 14:21
2020-12-5
Show GitHub Exploit DB Packet Storm
655 3.3
4.3
LOW
Local
A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the ran… CWE-190
 Integer Overflow or Wraparound
CVE-2020-27767 cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 14:21
2020-12-5
Show GitHub Exploit DB Packet Storm
656 6.1
4.3
MEDIUM
Network
A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A r… - CVE-2020-27783 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:21
2020-12-4
Show GitHub Exploit DB Packet Storm
657 7.5
5.0
HIGH
Network
A flaw was found in Poppler in the way certain PDF files were converted into HTML. A remote attacker could exploit this flaw by providing a malicious PDF file that, when processed by the 'pdftohtml' … CWE-824
 Access of Uninitialized Pointer
CVE-2020-27778 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:21
2020-12-4
Show GitHub Exploit DB Packet Storm
658 7.8
4.6
HIGH
Local
A flaw was found in the Linux kernel. A use-after-free memory flaw was found in the perf subsystem allowing a local attacker with permission to monitor perf events to corrupt memory and possibly esca… - CVE-2020-14351 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 14:03
2020-12-4
Show GitHub Exploit DB Packet Storm
659 8.8
7.2
HIGH
Local
A flaw was found in libvirt, where it leaked a file descriptor for `/dev/mapper/control` into the QEMU process. This file descriptor allows for privileged operations to happen against the device-mapp… - CVE-2020-14339 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:03
2020-12-4
Show GitHub Exploit DB Packet Storm
660 4.3
4.0
MEDIUM
Network
A flaw was found in the way samba handled file and directory permissions. An authenticated user could use this flaw to gain access to certain file and directory information which otherwise would be u… - CVE-2020-14318 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 14:02
2020-12-4
Show GitHub Exploit DB Packet Storm