Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1391 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
1392 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
1393 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
1394 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
1395 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
1396 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
1397 Red Hat Enterprise Linux 3 3.0 0 33 44 17
1398 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1391 -
6.8 		MEDIUM Integer overflow in the load_image function in file-xwd.c in the X Window Dump (XWD) plug-in in GIMP 2.6.9 and earlier, when used with glib before 2.24, allows remote attackers to cause a denial of s… CWE-190
 Integer Overflow or Wraparound 		CVE-2013-1913 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5.0:* 		2024-11-21 10:50
2013-12-13 		Show GitHub Exploit DB Packet Storm
1392 -
5.5 		MEDIUM The EJB invocation handler implementation in Red Hat JBossWS, as used in JBoss Enterprise Application Platform (EAP) before 6.2.0, does not properly enforce the method level restrictions for JAX-WS S… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-2133 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:* 		2024-11-21 10:51
2013-12-7 		Show GitHub Exploit DB Packet Storm
1393 -
6.3 		MEDIUM OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1) ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (… CWE-59
Link Following 		CVE-2013-2561 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:51
2013-11-24 		Show GitHub Exploit DB Packet Storm
1394 -
1.9 		LOW The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the join command, when using the -i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0223 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:47
2013-11-24 		Show GitHub Exploit DB Packet Storm
1395 -
2.1 		LOW The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the uniq command, which triggers a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0222 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:47
2013-11-24 		Show GitHub Exploit DB Packet Storm
1396 -
4.3 		MEDIUM The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the sort command, when using the (1… CWE-20
 Improper Input Validation  		CVE-2013-0221 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:47
2013-11-24 		Show GitHub Exploit DB Packet Storm
1397 -
3.7 		LOW The clone_file function in transfer.c in Augeas before 1.0.0, when copy_if_rename_fails is set and EXDEV or EBUSY is returned by the rename function, allows local users to overwrite arbitrary files a… NVD-CWE-noinfo
CVE-2012-0787 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:35
2013-11-24 		Show GitHub Exploit DB Packet Storm
1398 -
4.0 		MEDIUM 389 Directory Server 1.2.11.15 (aka Red Hat Directory Server before 8.2.11-14) allows remote authenticated users to cause a denial of service (crash) via multiple @ characters in a GER attribute list… CWE-20
 Improper Input Validation  		CVE-2013-4485 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-11-23 		Show GitHub Exploit DB Packet Storm
1399 -
6.2 		MEDIUM Untrusted search path vulnerability in python-paste-script (aka paster) in Luci 0.26.0, when started using the initscript, allows local users to gain privileges via a Trojan horse .egg-info file in t… NVD-CWE-Other
CVE-2013-4482 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-11-23 		Show GitHub Exploit DB Packet Storm
1400 -
1.9 		LOW Race condition in Luci 0.26.0 creates /var/lib/luci/etc/luci.ini with world-readable permissions before restricting the permissions, which allows local users to read the file and obtain sensitive inf… CWE-362
Race Condition 		CVE-2013-4481 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-11-23 		Show GitHub Exploit DB Packet Storm