Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1711 CRITICAL 141 HIGH 603 MEDIUM 814 LOW 152
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
1431 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 8 24 16 3
1432 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 10 140 183 18
1433 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 49 327 454 51
1434 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 97 283 280 47
1435 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 77 176 212 56
1436 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
1437 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
1438 Red Hat Enterprise Linux 3 3.0 0 33 44 17
1439 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
1431 -
1.9
LOW Race condition in Luci 0.26.0 creates /var/lib/luci/etc/luci.ini with world-readable permissions before restricting the permissions, which allows local users to read the file and obtain sensitive inf… CWE-362
Race Condition
CVE-2013-4481 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-11-23
Show GitHub Exploit DB Packet Storm
1432 -
7.2
HIGH util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent directories when creating nested directories under /dev/, which allows local users to have unknown impact and attack vector… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-1813 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:50
2013-11-23
Show GitHub Exploit DB Packet Storm
1433 -
4.3
MEDIUM Pacemaker 1.1.10, when remote Cluster Information Base (CIB) configuration or resource management is enabled, does not limit the duration of connections to the blocking sockets, which allows remote a… CWE-399
 Resource Management Errors
CVE-2013-0281 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:47
2013-11-23
Show GitHub Exploit DB Packet Storm
1434 -
5.0
MEDIUM Stack-based buffer overflow in the reds_handle_ticket function in server/reds.c in SPICE 0.12.0 allows remote attackers to cause a denial of service (crash) via a long password in a SPICE ticket. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2013-4282 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:*
2024-11-21 10:55
2013-11-3
Show GitHub Exploit DB Packet Storm
1435 -
6.0
MEDIUM Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to… CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure
CVE-2013-4299 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-24
Show GitHub Exploit DB Packet Storm
1436 -
6.8
MEDIUM Multiple integer overflows in the th_read function in lib/block.c in libtar before 1.2.20 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1… CWE-189
Numeric Errors
CVE-2013-4397 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-18
Show GitHub Exploit DB Packet Storm
1437 -
4.3
MEDIUM Algorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN in lib/rubygems/version.rb in RubyGems before 1.8.23.1, 1.8.24 through 1.8.25, 2.0.x before 2.0.8, and 2.1.x before 2.1.0, as use… CWE-310
Cryptographic Issues
CVE-2013-4287 cpe:2.3:o:redhat:enterprise_linux:6.0:* 2024-11-21 10:55
2013-10-18
Show GitHub Exploit DB Packet Storm
1438 -
5.8
MEDIUM Off-by-one error in the get_prng_bytes function in crypto/ansi_cprng.c in the Linux kernel through 3.11.4 makes it easier for context-dependent attackers to defeat cryptographic protection mechanisms… CWE-189
Numeric Errors
CVE-2013-4345 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:*
2024-11-21 10:55
2013-10-10
Show GitHub Exploit DB Packet Storm
1439 -
7.6
HIGH xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by l… CWE-264
Permissions, Privileges, and Access Controls
CVE-2013-4342 cpe:2.3:o:redhat:enterprise_linux:6.0:*
cpe:2.3:o:redhat:enterprise_linux:5:*
2024-11-21 10:55
2013-10-10
Show GitHub Exploit DB Packet Storm
1440 -
4.3
MEDIUM Multiple integer overflows in malloc/malloc.c in the GNU C Library (aka glibc or libc6) 2.18 and earlier allow context-dependent attackers to cause a denial of service (heap corruption) via a large v… CWE-189
Numeric Errors
CVE-2013-4332 cpe:2.3:o:redhat:enterprise_linux:5:* 2024-11-21 10:55
2013-10-10
Show GitHub Exploit DB Packet Storm