Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	Linux 商用ライセンス有り

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
1351	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
1352	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
1353	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
1354	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
1355	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
1356	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
1357	Red Hat Enterprise Linux 3	3.0						0	33	44	17
1358	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
1351	- 4.9	MEDIUM	The acceleration support for the "REP MOVS" instruction in Xen 4.4.x, 3.2.x, and earlier lacks properly bounds checking for memory mapped I/O (MMIO) emulated in the hypervisor, which allows local HVM…	CWE-17 Code	CVE-2014-8867	cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:19 2014-12-2	Show	GitHub Exploit DB Packet Storm

1352	5.5 4.9	MEDIUM Local	arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allow…	CWE-400 Uncontrolled Resource Consumption	CVE-2014-3690	cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:08 2014-11-10	Show	GitHub Exploit DB Packet Storm

1353	7.5 7.8	HIGH Network	The SCTP implementation in the Linux kernel through 3.17.2 allows remote attackers to cause a denial of service (system crash) via a malformed ASCONF chunk, related to net/sctp/sm_make_chunk.c and ne…	CWE-20 Improper Input Validation	CVE-2014-3673	cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:08 2014-11-10	Show	GitHub Exploit DB Packet Storm

1354	5.5 1.9	MEDIUM Local	arch/x86/kvm/emulate.c in the KVM subsystem in the Linux kernel through 3.17.2 does not properly perform RIP changes, which allows guest OS users to cause a denial of service (guest OS crash) via a c…	NVD-CWE-noinfo	CVE-2014-3647	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:08 2014-11-10	Show	GitHub Exploit DB Packet Storm

1355	5.5 4.7	MEDIUM Local	arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel through 3.17.2 does not have an exit handler for the INVVPID instruction, which allows guest OS users to cause a denial of service (guest O…	NVD-CWE-noinfo	CVE-2014-3646	cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:08 2014-11-10	Show	GitHub Exploit DB Packet Storm

1356	4.7 4.7	MEDIUM Local	Race condition in the __kvm_migrate_pit_timer function in arch/x86/kvm/i8254.c in the KVM subsystem in the Linux kernel through 3.17.2 allows guest OS users to cause a denial of service (host OS cras…	CWE-362 Race Condition	CVE-2014-3611	cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:08 2014-11-10	Show	GitHub Exploit DB Packet Storm

1357	- 5.0	MEDIUM	parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when entity substitution has been disabled, which allows context-dependent attackers to cause a denial of service (CPU…	NVD-CWE-Other	CVE-2014-3660	cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 11:08 2014-11-5	Show	GitHub Exploit DB Packet Storm

1358	- 5.0	MEDIUM	The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document,…	NVD-CWE-Other	CVE-2014-8080	cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 11:18 2014-11-4	Show	GitHub Exploit DB Packet Storm

1359	3.4 4.3	LOW Network	The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeterministic CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a pad…	CWE-310 Cryptographic Issues	CVE-2014-3566	cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 11:08 2014-10-15	Show	GitHub Exploit DB Packet Storm

1360	9.8 10.0	CRITICAL Network	GNU Bash through 4.3 bash43-025 processes trailing strings after certain malformed function definitions in the values of environment variables, which allows remote attackers to write to files or poss…	CWE-78 OS Command	CVE-2014-7169	cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…	2026-04-22 23:32 2014-09-25	Show	GitHub Exploit DB Packet Storm