Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1704 CRITICAL 140 HIGH 597 MEDIUM 814 LOW 152
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り

Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
201 Red Hat Enterprise Linux 10.2 10.2 May 19, 2026 May 20, 2025 7 18 16 3
202 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 9 134 183 18
203 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 48 321 454 51
204 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 96 277 280 47
205 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 76 170 212 56
206 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
207 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
208 Red Hat Enterprise Linux 3 3.0 0 33 44 17
209 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
201 8.2
-
HIGH
Local
An improper input validation flaw was found in the eBPF subsystem in the Linux kernel. The issue occurs due to a lack of proper validation of dynamic pointers within user-supplied eBPF programs prior… NVD-CWE-noinfo
CVE-2023-39191 cpe:2.3:o:redhat:enterprise_linux:9.0:* 2024-11-21 17:14
2023-10-5
Show GitHub Exploit DB Packet Storm
202 5.9
-
MEDIUM
Network
A flaw was found in JSS. A memory leak in JSS requires non-standard configuration but is a low-effort DoS vector if configured that way (repeatedly hitting the login page). CWE-401
 Missing Release of Memory after Effective Lifetime
CVE-2022-4132 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 16:34
2023-10-4
Show GitHub Exploit DB Packet Storm
203 7.8
-
HIGH
Local
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously craft… CWE-787
 Out-of-bounds Write
CVE-2023-4911 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 17:36
2023-10-4
Show GitHub Exploit DB Packet Storm
204 4.7
-
MEDIUM
Local
A flaw was found in pfn_swap_entry_to_page in memory management subsystem in the Linux Kernel. In this flaw, an attacker with a local user privilege may cause a denial of service problem due to a BUG… CWE-362
Race Condition
CVE-2023-4732 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 17:35
2023-10-4
Show GitHub Exploit DB Packet Storm
205 7.5
-
HIGH
Network
VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding. CWE-755
 Improper Handling of Exceptional Conditions
CVE-2023-44488 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 17:25
2023-10-1
Show GitHub Exploit DB Packet Storm
206 6.5
-
MEDIUM
Adjacent
A flaw was found in libnbd. A server can reply with a block size larger than 2^63 (the NBD spec states the size is a 64-bit unsigned value). This issue could lead to an application crash or other uni… CWE-252
 Unchecked Return Value
CVE-2023-5215 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 17:41
2023-09-28
Show GitHub Exploit DB Packet Storm
207 4.7
-
MEDIUM
Local
A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wron… CWE-362
Race Condition
CVE-2023-42756 cpe:2.3:o:redhat:enterprise_linux:9.0:* 2024-11-21 17:23
2023-09-28
Show GitHub Exploit DB Packet Storm
208 7.5
-
HIGH
Network
A vulnerability was found in MariaDB. An OpenVAS port scan on ports 3306 and 4567 allows a malicious remote client to cause a denial of service. NVD-CWE-noinfo
CVE-2023-5157 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
2024-11-21 17:41
2023-09-28
Show GitHub Exploit DB Packet Storm
209 7.8
-
HIGH
Local
An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h->nets` array offset, providing attackers with the pr… CWE-787
 Out-of-bounds Write
CVE-2023-42753 cpe:2.3:o:redhat:enterprise_linux:9.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux…
2024-11-21 17:23
2023-09-26
Show GitHub Exploit DB Packet Storm
210 7.1
-
HIGH
Local
A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information. CWE-125
Out-of-bounds Read
CVE-2023-4156 cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*
2024-11-21 17:34
2023-09-26
Show GitHub Exploit DB Packet Storm