Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	商用ライセンス有り Linux

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
1381	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
1382	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
1383	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
1384	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
1385	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
1386	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
1387	Red Hat Enterprise Linux 3	3.0						0	33	44	17
1388	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
1381	- 6.8	MEDIUM	Buffer overflow in the ccid_card_vscard_handle_message function in hw/ccid-card-passthru.c in QEMU before 0.15.2 and 1.x before 1.0-rc4 allows remote attackers to cause a denial of service (crash) an…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2011-4111	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:31 2014-02-27	Show	GitHub Exploit DB Packet Storm

1382	- 4.3	MEDIUM	Multiple cross-site scripting (XSS) vulnerabilities in actionview/lib/action_view/helpers/number_helper.rb in Ruby on Rails before 3.2.17, 4.0.x before 4.0.3, and 4.1.x before 4.1.0.beta2 allow remot…	CWE-79 Cross-site Scripting	CVE-2014-0081	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 11:01 2014-02-21	Show	GitHub Exploit DB Packet Storm

1383	- 6.8	MEDIUM	The vfprintf function in stdio-common/vfprintf.c in GNU C Library (aka glibc) 2.5, 2.12, and probably other versions does not "properly restrict the use of" the alloca function when allocating the SP…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-3406	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 10:40 2014-02-11	Show	GitHub Exploit DB Packet Storm

1384	- 5.0	MEDIUM	The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library (aka glibc) 2.14 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to …	CWE-189 Numeric Errors	CVE-2012-3405	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:40 2014-02-11	Show	GitHub Exploit DB Packet Storm

1385	- 5.0	MEDIUM	The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library (aka glibc) 2.12 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to …	CWE-189 Numeric Errors	CVE-2012-3404	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:40 2014-02-11	Show	GitHub Exploit DB Packet Storm

1386	- 4.4	MEDIUM	virt-v2v before 0.8.4 does not preserve the VNC console password when converting a guest, which allows local users to bypass the intended VNC authentication by connecting without a password.	CWE-255 Credentials Management	CVE-2011-1773	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:27 2014-02-8	Show	GitHub Exploit DB Packet Storm

1387	- 7.5	HIGH	Buffer overflow in client/mysql.cc in Oracle MySQL and MariaDB before 5.5.35 allows remote database servers to cause a denial of service (crash) and possibly execute arbitrary code via a long server …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-0001	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5:* cpe:2.3:o:redhat:enterprise_linux:5…	2024-11-21 11:01 2014-02-1	Show	GitHub Exploit DB Packet Storm

1388	- 6.2	MEDIUM	The KVM subsystem in the Linux kernel through 3.12.5 allows local users to gain privileges or cause a denial of service (system crash) via a VAPIC synchronization operation involving a page-end addre…	CWE-20 Improper Input Validation	CVE-2013-6368	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:59 2013-12-15	Show	GitHub Exploit DB Packet Storm

1389	- 4.0	MEDIUM	mod_nss 1.0.8 and earlier, when NSSVerifyClient is set to none for the server/vhost context, does not enforce the NSSVerifyClient setting in the directory context, which allows remote attackers to by…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4566	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 10:55 2013-12-13	Show	GitHub Exploit DB Packet Storm

1390	- 6.8	MEDIUM	Heap-based buffer overflow in the read_xwd_cols function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier allows remote attackers to cause a denial of service (crash) and po…	CWE-787 Out-of-bounds Write	CVE-2013-1978	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5.0:*	2024-11-21 10:50 2013-12-13	Show	GitHub Exploit DB Packet Storm