Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1717 CRITICAL 141 HIGH 605 MEDIUM 817 LOW 153
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
741 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 18 4
742 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 142 186 19
743 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 328 457 52
744 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 284 282 48
745 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
746 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
747 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
748 Red Hat Enterprise Linux 3 3.0 0 33 44 17
749 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
741 7.5
5.0
HIGH
Network
OpenJPEG through 2.3.1 has a heap-based buffer overflow in opj_t1_clbl_decode_processor in openjp2/t1.c because of lack of opj_j2k_update_image_dimensions validation. CWE-787
 Out-of-bounds Write
CVE-2020-6851 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:36
2020-01-13
Show GitHub Exploit DB Packet Storm
742 7.8
6.8
HIGH
Local
The error function in Error.cc in poppler before 0.21.4 allows remote attackers to execute arbitrary commands via a PDF containing an escape sequence for a terminal emulator. NVD-CWE-Other
CVE-2012-2142 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*
2024-11-21 10:38
2020-01-10
Show GitHub Exploit DB Packet Storm
743 6.1
5.6
MEDIUM
Local
An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get … - CVE-2019-19332 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 13:34
2020-01-10
Show GitHub Exploit DB Packet Storm
744 8.8
6.8
HIGH
Network
Mozilla developers reported memory safety bugs present in Firefox 71 and Firefox ESR 68.3. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write
CVE-2019-17024 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:31
2020-01-9
Show GitHub Exploit DB Packet Storm
745 9.8
7.5
CRITICAL
Network
A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through … - CVE-2019-14906 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 13:27
2020-01-8
Show GitHub Exploit DB Packet Storm
746 7.3
6.9
HIGH
Local
In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting ar… NVD-CWE-Other
CVE-2019-14866 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 13:27
2020-01-8
Show GitHub Exploit DB Packet Storm
747 6.1
4.3
MEDIUM
Network
Multiple cross-site scripting (XSS) vulnerabilities in Zend Framework 2.0.x before 2.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified input to (1) Debug, (2) Feed\Pub… CWE-79
Cross-site Scripting
CVE-2012-4451 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:42
2020-01-4
Show GitHub Exploit DB Packet Storm
748 6.5
4.0
MEDIUM
Network
Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag no_log set it to True when Sumologic and Splunk callback plugins are used… - CVE-2019-14864 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 13:27
2020-01-3
Show GitHub Exploit DB Packet Storm
749 4.7
1.9
MEDIUM
Local
Multiple race conditions in the (1) mount.cifs and (2) umount.cifs programs in Samba 3.6 allow local users to cause a denial of service (mounting outage) via a SIGKILL signal during a time window whe… CWE-362
Race Condition
CVE-2011-3585 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 10:30
2020-01-1
Show GitHub Exploit DB Packet Storm
750 5.5
2.1
MEDIUM
Local
A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RES… CWE-787
 Out-of-bounds Write
CVE-2019-18391 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:33
2019-12-24
Show GitHub Exploit DB Packet Storm