Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1717 CRITICAL 141 HIGH 605 MEDIUM 817 LOW 153
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
941 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 18 4
942 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 142 186 19
943 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 328 457 52
944 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 284 282 48
945 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
946 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
947 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
948 Red Hat Enterprise Linux 3 3.0 0 33 44 17
949 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
941 7.0
6.9
HIGH
Local
arch/powerpc/mm/mmu_context_book3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain condit… CWE-787
 Out-of-bounds Write
CVE-2019-12817 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:23
2019-06-25
Show GitHub Exploit DB Packet Storm
942 5.9
4.3
MEDIUM
Network
FasterXML jackson-databind 2.x before 2.9.9.1 might allow attackers to have a variety of impacts by leveraging failure to block the logback-core class from polymorphic deserialization. Depending on t… CWE-502
 Deserialization of Untrusted Data
CVE-2019-12384 cpe:2.3:o:redhat:enterprise_linux:7.7:*
cpe:2.3:o:redhat:enterprise_linux:7.6:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 13:22
2019-06-25
Show GitHub Exploit DB Packet Storm
943 7.5
5.0
HIGH
Network
Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. … CWE-770
 Allocation of Resources Without Limits or Throttling
CVE-2019-11479 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 13:21
2019-06-19
Show GitHub Exploit DB Packet Storm
944 7.5
5.0
HIGH
Network
Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences… CWE-400
 Uncontrolled Resource Consumption
CVE-2019-11478 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 13:21
2019-06-19
Show GitHub Exploit DB Packet Storm
945 7.5
7.8
HIGH
Network
Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker c… CWE-190
 Integer Overflow or Wraparound
CVE-2019-11477 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 13:21
2019-06-19
Show GitHub Exploit DB Packet Storm
946 5.3
5.0
MEDIUM
Network
When using the gdImageCreateFromXbm() function in the GD Graphics Library (aka LibGD) 2.2.5, as used in the PHP GD extension in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3… CWE-908
 Use of Uninitialized Resource
CVE-2019-11038 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
2024-11-21 13:20
2019-06-19
Show GitHub Exploit DB Packet Storm
947 7.8
4.6
HIGH
Local
A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in fu… CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2012-6711 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 10:46
2019-06-19
Show GitHub Exploit DB Packet Storm
948 8.8
6.8
HIGH
Network
An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted gem with a multi-line name is not handled correctly. Therefore, an attacker could inject arbitrary code to the stub line of … CWE-94
Code Injection
CVE-2019-8324 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:49
2019-06-18
Show GitHub Exploit DB Packet Storm
949 9.8
7.5
CRITICAL
Network
A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly oth… - CVE-2019-10126 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:18
2019-06-14
Show GitHub Exploit DB Packet Storm
950 3.1
3.5
LOW
Network
The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted and integrity protected using the established IKE SA encryption and integ… CWE-354
 Improper Validation of Integrity Check Value
CVE-2019-10155 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:18
2019-06-12
Show GitHub Exploit DB Packet Storm