Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
1401 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
1402 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
1403 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
1404 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
1405 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
1406 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
1407 Red Hat Enterprise Linux 3 3.0 0 33 44 17
1408 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
1401 -
7.2 		HIGH util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent directories when creating nested directories under /dev/, which allows local users to have unknown impact and attack vector… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-1813 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:50
2013-11-23 		Show GitHub Exploit DB Packet Storm
1402 -
4.3 		MEDIUM Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote a… CWE-399
 Resource Management Errors 		CVE-2013-0281 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:47
2013-11-23 		Show GitHub Exploit DB Packet Storm
1403 -
5.0 		MEDIUM Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4282 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:* 		2024-11-21 10:55
2013-11-3 		Show GitHub Exploit DB Packet Storm
1404 -
6.0 		MEDIUM Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to… CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure 		CVE-2013-4299 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-24 		Show GitHub Exploit DB Packet Storm
1405 -
6.8 		MEDIUM Multiple integer overflows in the th_read function in lib/block.c in libtar before 1.2.20 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1… CWE-189
Numeric Errors 		CVE-2013-4397 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-18 		Show GitHub Exploit DB Packet Storm
1406 -
4.3 		MEDIUM Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x before 2.0.8, and 2.1.x before 2.1.0, as use… CWE-310
Cryptographic Issues 		CVE-2013-4287 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-18 		Show GitHub Exploit DB Packet Storm
1407 -
5.8 		MEDIUM Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms… CWE-189
Numeric Errors 		CVE-2013-4345 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:* 		2024-11-21 10:55
2013-10-10 		Show GitHub Exploit DB Packet Storm
1408 -
7.6 		HIGH xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by l… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4342 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:* 		2024-11-21 10:55
2013-10-10 		Show GitHub Exploit DB Packet Storm
1409 -
4.3 		MEDIUM Multiple integer overflows in malloc/malloc.c in the GNU C Library (aka glibc or libc6) 2.18 and earlier allow context-dependent attackers to cause a denial of service (heap corruption) via a large v… CWE-189
Numeric Errors 		CVE-2013-4332 cpe:2.3:o:redhat:enterprise_linux:5:* 2024-11-21 10:55
2013-10-10 		Show GitHub Exploit DB Packet Storm
1410 -
4.6 		MEDIUM RealtimeKit (aka rtkit) 0.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess Po… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-4326 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-4 		Show GitHub Exploit DB Packet Storm