Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
991 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
992 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
993 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
994 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
995 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
996 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
997 Red Hat Enterprise Linux 3 3.0 0 33 44 17
998 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
991 6.5
3.3 		MEDIUM
Adjacent 		The SCTP socket buffer used by a userspace application is not accounted by the cgroups subsystem. An attacker can use this flaw to cause a denial of service attack. Kernel 3.10.x and 4.18.x branches … - CVE-2019-3874 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 13:42
2019-03-26 		Show GitHub Exploit DB Packet Storm
992 8.8
6.8 		HIGH
Network 		An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way SSH_MSG_CHANNEL_REQUEST packets with an exit signal are parsed. A remote attacker… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-3857 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:42
2019-03-26 		Show GitHub Exploit DB Packet Storm
993 8.8
6.8 		HIGH
Network 		An integer overflow flaw, which could lead to an out of bounds write, was discovered in libssh2 before 1.8.1 in the way keyboard prompt requests are parsed. A remote attacker who compromises a SSH se… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-3856 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:42
2019-03-26 		Show GitHub Exploit DB Packet Storm
994 5.5
4.3 		MEDIUM
Local 		It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example,… NVD-CWE-Other
CVE-2019-3838 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5.0:* 		2024-11-21 13:42
2019-03-26 		Show GitHub Exploit DB Packet Storm
995 5.4
5.5 		MEDIUM
Network 		A flaw was found in sssd Group Policy Objects implementation. When the GPO is not readable by SSSD due to a too strict permission settings on the server side, SSSD will allow all authenticated users … CWE-269
 Improper Privilege Management 		CVE-2018-16838 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 12:53
2019-03-26 		Show GitHub Exploit DB Packet Storm
996 8.8
9.3 		HIGH
Network 		An integer overflow flaw which could lead to an out of bounds write was discovered in libssh2 before 1.8.1 in the way packets are read from the server. A remote attacker who compromises a SSH server … CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-3855 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:42
2019-03-22 		Show GitHub Exploit DB Packet Storm
997 6.5
4.3 		MEDIUM
Network 		PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passin… CWE-787
 Out-of-bounds Write 		CVE-2019-9903 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:52
2019-03-22 		Show GitHub Exploit DB Packet Storm
998 5.5
2.1 		MEDIUM
Local 		The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak. NVD-CWE-noinfo
CVE-2019-7222 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:47
2019-03-22 		Show GitHub Exploit DB Packet Storm
999 7.8
4.6 		HIGH
Local 		The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free. CWE-416
 Use After Free 		CVE-2019-7221 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 13:47
2019-03-22 		Show GitHub Exploit DB Packet Storm
1000 5.5
4.9 		MEDIUM
Local 		An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming … CWE-787
 Out-of-bounds Write 		CVE-2019-6454 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:46
2019-03-22 		Show GitHub Exploit DB Packet Storm