Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1717 CRITICAL 141 HIGH 605 MEDIUM 817 LOW 153
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
861 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 18 4
862 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 142 186 19
863 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 328 457 52
864 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 284 282 48
865 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
866 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
867 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
868 Red Hat Enterprise Linux 3 3.0 0 33 44 17
869 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
861 7.5
5.0
HIGH
Network
The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-fr.c:mfr_print(). CWE-125
Out-of-bounds Read
CVE-2018-14468 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 12:49
2019-10-4
Show GitHub Exploit DB Packet Storm
862 7.5
5.0
HIGH
Network
The LDP parser in tcpdump before 4.9.3 has a buffer over-read in print-ldp.c:ldp_tlv_print(). CWE-125
Out-of-bounds Read
CVE-2018-14461 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 12:49
2019-10-4
Show GitHub Exploit DB Packet Storm
863 7.5
5.0
HIGH
Network
Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling. CWE-444
HTTP Request Smuggling
CVE-2019-16276 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:30
2019-10-1
Show GitHub Exploit DB Packet Storm
864 4.7
4.7
MEDIUM
Local
In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn->fb_tunnel_dev, which may cause denial of service, aka CID-07f12… CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2019-16994 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 13:31
2019-09-30
Show GitHub Exploit DB Packet Storm
865 7.5
5.0
HIGH
Network
runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a m… CWE-863
 Incorrect Authorization
CVE-2019-16884 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:31
2019-09-26
Show GitHub Exploit DB Packet Storm
866 4.3
2.6
MEDIUM
Network
An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction. CWE-22
Path Traversal
CVE-2019-16680 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 13:30
2019-09-22
Show GitHub Exploit DB Packet Storm
867 7.8
7.2
HIGH
Local
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) o… - CVE-2019-14816 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.6:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 13:27
2019-09-21
Show GitHub Exploit DB Packet Storm
868 7.8
7.2
HIGH
Local
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system cr… - CVE-2019-14814 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 13:27
2019-09-21
Show GitHub Exploit DB Packet Storm
869 8.8
7.2
HIGH
Local
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO r… - CVE-2019-14821 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:27
2019-09-20
Show GitHub Exploit DB Packet Storm
870 4.4
2.1
MEDIUM
Local
A flaw was found in FreeIPA versions 4.5.0 and later. Session cookies were retained in the cache after logout. An attacker could abuse this flaw if they obtain previously valid session cookies and ca… CWE-613
 Insufficient Session Expiration
CVE-2019-14826 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 13:27
2019-09-18
Show GitHub Exploit DB Packet Storm