Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1717 CRITICAL 141 HIGH 605 MEDIUM 817 LOW 153
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
1 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 May 31, 2030 May 31, 2035 May 19, 2032 8 24 18 4
2 Red Hat Enterprise Linux 9 9.8 May 19, 2026 May 17, 2022 May 31, 2027 May 31, 2032 May 31, 2036 10 142 186 19
3 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 May 31, 2029 May 31, 2033 49 328 457 52
4 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 June 9, 2014 Aug. 6, 2019 June 30, 2024 June 30, 2024 0 0 0 0
5 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 284 282 48
6 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
7 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2016 Nov. 30, 2020 June 30, 2024 0 0 0 0
8 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
9 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 Jan. 8, 2013 March 31, 2017 Nov. 30, 2020 0 0 0 0
10 Red Hat Enterprise Linux 4 4.9 Feb. 16, 2011 Feb. 15, 2005 March 31, 2009 Feb. 29, 2012 March 31, 2017 0 0 0 0
11 Red Hat Enterprise Linux 3 3.0 June 20, 2007 Oct. 22, 2003 July 20, 2006 Oct. 31, 2010 Jan. 30, 2014 0 33 44 17
12 Red Hat Enterprise Linux 2.1 2.1 April 28, 2005 March 23, 2002 Nov. 30, 2004 May 31, 2009 0 0 0 0
13 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 March 23, 2002 Nov. 30, 2004 May 31, 2009 0 32 37 6
14 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
1 3.7
-
LOW
Network
A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp() for comparing password hashes instead of a constant-time comparison function. A remot… CWE-208
 Information Exposure Through Timing Discrepancy
CVE-2026-15041 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-10 04:36
2026-07-8
Show GitHub Exploit DB Packet Storm
2 4.4
-
MEDIUM
Local
A flaw was found in 389-ds-base where the LDBM backend attribute encryption uses a hardcoded static initialization vector for AES-CBC and 3DES-CBC operations, allowing an attacker with privileged fil… CWE-329
 Not Using a Random IV with CBC Mode
CVE-2026-14969 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-10 05:16
2026-07-8
Show GitHub Exploit DB Packet Storm
3 5.3
-
MEDIUM
Network
A heap-buffer-overflow flaw was found in 389 Directory Server (389-ds-base). When normalizing a Distinguished Name (DN) that contains a legacy-quoted value encoding a multivalued nested Relative Dist… CWE-122
Heap-based Buffer Overflow
CVE-2026-14940 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-10 05:20
2026-07-8
Show GitHub Exploit DB Packet Storm
4 7.8
-
HIGH
Local
A flaw was found in GIMP's PSD parser. An integer overflow in read_RLE_channel() can cause an undersized heap allocation for the RLE row-length table, after which subsequent per-row writes corrupt he… CWE-190
 Integer Overflow or Wraparound
CVE-2026-58384 cpe:2.3:o:redhat:enterprise_linux:9.0:* 2026-07-11 00:21
2026-07-7
Show GitHub Exploit DB Packet Storm
5 5.5
-
MEDIUM
Local
A flaw was found in GIMP. The PlayStation TIM loader, responsible for handling PlayStation image files, incorrectly calculates the size of the Color Look-Up Table (CLUT) due to an integer overflow. T… CWE-190
 Integer Overflow or Wraparound
CVE-2026-59089 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2026-07-11 01:09
2026-07-7
Show GitHub Exploit DB Packet Storm
6 7.8
-
HIGH
Local
A flaw was found in GIMP's PNM file format parser. When parsing a specially crafted PNM file, the pnmscanner_gettoken() function writes a null terminator one byte past the end of a stack-allocated bu… CWE-193
 Off-by-one Error
CVE-2026-58380 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-11 02:26
2026-07-7
Show GitHub Exploit DB Packet Storm
7 9.1
-
CRITICAL
Network
A flaw was found in GLib. A state confusion issue exists in g_dbus_node_info_new_for_xml() in the gio/gdbusintrospection.c file when processing malformed D-Bus introspection XML, specifically with a … CWE-191
 Integer Underflow (Wrap or Wraparound)
CVE-2026-58016 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-2 02:46
2026-06-30
Show GitHub Exploit DB Packet Storm
8 7.5
-
HIGH
Network
A flaw was found in GLib. The D-Bus client-side implementation of the DBUS_COOKIE_SHA1 SASL authentication mechanism does not validate the cookie_context parameter received from the server. A malicio… NVD-CWE-noinfo
CWE-22
Path Traversal
CVE-2026-58015 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-2 11:16
2026-06-30
Show GitHub Exploit DB Packet Storm
9 8.6
-
HIGH
Network
A flaw was found in GLib. An off-by-one error can occur in the g_key_file_get_locale_string_list function in the gkeyfile.c file when loading a key file with an empty value. This flaw can cause an ou… CWE-193
 Off-by-one Error
CVE-2026-58014 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-2 02:58
2026-06-30
Show GitHub Exploit DB Packet Storm
10 8.2
-
HIGH
Network
A flaw was found in GLib. A buffer over-read can occur in g_io_channel_read_line_backend() in the giochannel.c file when a custom line terminator with a length greater than one is set, causing memcmp… CWE-126
 Buffer Over-read
CVE-2026-58013 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2026-07-3 04:29
2026-06-30
Show GitHub Exploit DB Packet Storm