Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	Linux 商用ライセンス有り

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
1651	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
1652	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
1653	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
1654	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
1655	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
1656	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
1657	Red Hat Enterprise Linux 3	3.0						0	33	44	17
1658	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
1651	- 5.0	MEDIUM	The SMB SID snooping capability in Ethereal 0.9.15 to 0.10.4 allows remote attackers to cause a denial of service (process crash) via a handle without a policy name, which causes a null dereference.	NVD-CWE-Other	CVE-2004-0634	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-02-14 10:17 2004-12-6	Show	GitHub Exploit DB Packet Storm

1652	- 5.0	MEDIUM	The SNMP dissector in Ethereal 0.8.15 through 0.10.4 allows remote attackers to cause a denial of service (process crash) via a (1) malformed or (2) missing community string, which causes an out-of-b…	NVD-CWE-Other	CVE-2004-0635	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-02-14 10:17 2004-12-6	Show	GitHub Exploit DB Packet Storm

1653	- 7.5	HIGH	Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.	NVD-CWE-Other	CVE-2004-0494	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2017-10-11 10:29 2004-11-23	Show	GitHub Exploit DB Packet Storm

1654	- 5.0	MEDIUM	OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test …	NVD-CWE-Other	CVE-2004-0081	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2021-11-9 00:48 2004-11-23	Show	GitHub Exploit DB Packet Storm

1655	7.5 5.0	HIGH Network	The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null…	CWE-476 NULL Pointer Dereference	CVE-2004-0079	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2023-12-29 00:33 2004-11-23	Show	GitHub Exploit DB Packet Storm

1656	- 5.0	MEDIUM	The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote at…	CWE-125 Out-of-bounds Read	CVE-2004-0112	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-02-16 05:54 2004-11-23	Show	GitHub Exploit DB Packet Storm

1657	- 7.5	HIGH	Unknown vulnerability in redhat-config-nfs before 1.0.13, when shares are exported to multiple hosts, can produce incorrect permissions and prevent the all_squash option from being applied.	NVD-CWE-Other	CVE-2004-0750	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2018-10-20 00:30 2004-10-20	Show	GitHub Exploit DB Packet Storm

1658	- 5.0	MEDIUM	Mozilla allows remote attackers to cause a denial of service (application crash from null dereference or infinite loop) via a web page that contains a (1) TEXTAREA, (2) INPUT, (3) FRAMESET or (4) IMG…	NVD-CWE-Other	CVE-2004-1613	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2017-10-11 10:29 2004-10-18	Show	GitHub Exploit DB Packet Storm

1659	- 7.5	HIGH	Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute ar…	NVD-CWE-Other	CVE-2004-0827	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2017-10-11 10:29 2004-09-16	Show	GitHub Exploit DB Packet Storm

1660	- 5.0	MEDIUM	The mod_dav module in Apache 2.0.50 and earlier allows remote attackers to cause a denial of service (child process crash) via a certain sequence of LOCK requests for a location that allows WebDAV au…	NVD-CWE-noinfo	CVE-2004-0809	cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux:3.0:* cpe:2.3:o:redhat:enterprise_linux…	2023-11-7 10:56 2004-09-16	Show	GitHub Exploit DB Packet Storm