Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	Linux 商用ライセンス有り

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
1411	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
1412	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
1413	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
1414	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
1415	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
1416	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
1417	Red Hat Enterprise Linux 3	3.0						0	33	44	17
1418	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
1411	- 4.6	MEDIUM	spice-gtk 0.14, and possibly other versions, invokes the polkit authority using the insecure polkit_unix_process_new API function, which allows local users to bypass intended access restrictions by l…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4324	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:55 2013-10-4	Show	GitHub Exploit DB Packet Storm

1412	- 4.6	MEDIUM	libvirt 1.0.5.x before 1.0.5.6, 0.10.2.x before 0.10.2.8, and 0.9.12.x before 0.9.12.2 allows local users to bypass intended access restrictions by leveraging a PolkitUnixProcess PolkitSubject race c…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-4311	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:55 2013-10-4	Show	GitHub Exploit DB Packet Storm

1413	- 7.2	HIGH	Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is perf…	CWE-362 Race Condition	CVE-2013-4288	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:55 2013-10-4	Show	GitHub Exploit DB Packet Storm

1414	- 7.2	HIGH	Unquoted Windows search path vulnerability in the QEMU Guest Agent service for Red Hat Enterprise Linux Desktop 6, HPC Node 6, Server 6, Workstation 6, Desktop Supplementary 6, Server Supplementary 6…	CWE-399 Resource Management Errors	CVE-2013-2231	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:51 2013-10-2	Show	GitHub Exploit DB Packet Storm

1415	- 4.0	MEDIUM	The remoteDispatchDomainMemoryStats function in daemon/remote.c in libvirt 0.9.1 through 0.10.1.x, 0.10.2.x before 0.10.2.8, 1.0.x before 1.0.5.6, and 1.1.x before 1.1.2 allows remote authenticated u…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-4296	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:55 2013-10-1	Show	GitHub Exploit DB Packet Storm

1416	- 1.2	LOW	cache.py in Suds 0.4, when tempdir is set to None, allows local users to redirect SOAP queries and possibly have other unspecified impact via a symlink attack on a cache file with a predictable name …	CWE-59 Link Following	CVE-2013-2217	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 10:51 2013-09-24	Show	GitHub Exploit DB Packet Storm

1417	- 4.3	MEDIUM	The SOAP parser in PHP before 5.3.22 and 5.4.x before 5.4.12 allows remote attackers to read arbitrary files via a SOAP WSDL file containing an XML external entity declaration in conjunction with an …	CWE-611 XXE	CVE-2013-1824	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 10:50 2013-09-16	Show	GitHub Exploit DB Packet Storm

1418	- 6.8	MEDIUM	The Intel drivers in Mesa 8.0.x and 9.0.x allow context-dependent attackers to cause a denial of service (reachable assertion and crash) and possibly execute arbitrary code via vectors involving 3d g…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1872	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 10:50 2013-08-20	Show	GitHub Exploit DB Packet Storm

1419	- 4.3	MEDIUM	The openssl_x509_parse function in openssl.c in the OpenSSL module in PHP before 5.4.18 and 5.5.x before 5.5.2 does not properly handle a '\0' character in a domain name in the Subject Alternative Na…	CWE-20 Improper Input Validation	CVE-2013-4248	cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 10:55 2013-08-18	Show	GitHub Exploit DB Packet Storm

1420	- 5.0	MEDIUM	Integer overflow in the read_nttrans_ea_list function in nttrans.c in smbd in Samba 3.x before 3.5.22, 3.6.x before 3.6.17, and 4.x before 4.0.8 allows remote attackers to cause a denial of service (…	CWE-189 Numeric Errors	CVE-2013-4124	cpe:2.3:o:redhat:enterprise_linux:5:*	2024-11-21 10:54 2013-08-6	Show	GitHub Exploit DB Packet Storm