Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
391 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
392 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
393 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
394 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
395 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
396 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
397 Red Hat Enterprise Linux 3 3.0 0 33 44 17
398 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
391 8.2
4.6 		HIGH
Local 		A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled values `cursor->header.width` and `cursor->header.height` can lead to the allocation of a small cursor… CWE-362
CWE-120
Race Condition
Classic Buffer Overflow 		CVE-2021-4207 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:* 		2024-11-21 15:37
2022-04-30 		Show GitHub Exploit DB Packet Storm
392 8.2
4.6 		HIGH
Local 		A flaw was found in the QXL display device emulation in QEMU. An integer overflow in the cursor_alloc() function can lead to the allocation of a small cursor object followed by a subsequent heap-base… CWE-190
CWE-120
CWE-131
 Integer Overflow or Wraparound
Classic Buffer Overflow
Incorrect Calculation of Buffer Size 		CVE-2021-4206 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:8.0:* 		2024-11-21 15:37
2022-04-30 		Show GitHub Exploit DB Packet Storm
393 7.1
3.6 		HIGH
Local 		A vulnerability was found in the pfkey_register function in net/key/af_key.c in the Linux kernel. This flaw allows a local, unprivileged user to gain access to kernel memory, leading to a system cras… NVD-CWE-noinfo
CVE-2022-1353 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:40
2022-04-30 		Show GitHub Exploit DB Packet Storm
394 8.8
6.8 		HIGH
Network 		A privilege escalation flaw was found in Podman. This flaw allows an attacker to publish a malicious image to a public registry. Once this image is downloaded by a potential victim, the vulnerability… CWE-269
 Improper Privilege Management 		CVE-2022-1227 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 15:40
2022-04-30 		Show GitHub Exploit DB Packet Storm
395 7.0
6.9 		HIGH
Local 		A use-after-free flaw was found in the Linux kernel’s sound subsystem in the way a user triggers concurrent calls of PCM hw_params. The hw_free ioctls or similar race condition happens inside ALSA PC… CWE-362
CWE-416
Race Condition
 Use After Free 		CVE-2022-1048 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:39
2022-04-30 		Show GitHub Exploit DB Packet Storm
396 5.3
5.0 		MEDIUM
Network 		Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library. CWE-787
 Out-of-bounds Write 		CVE-2021-42781 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 15:28
2022-04-19 		Show GitHub Exploit DB Packet Storm
397 5.3
5.0 		MEDIUM
Network 		A use after return issue was found in Opensc before version 0.22.0 in insert_pin function that could potentially crash programs using the library. CWE-252
 Unchecked Return Value 		CVE-2021-42780 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 15:28
2022-04-19 		Show GitHub Exploit DB Packet Storm
398 5.3
5.0 		MEDIUM
Network 		A heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid. CWE-416
 Use After Free 		CVE-2021-42779 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 15:28
2022-04-19 		Show GitHub Exploit DB Packet Storm
399 5.3
5.0 		MEDIUM
Network 		A heap double free issue was found in Opensc before version 0.22.0 in sc_pkcs15_free_tokeninfo. CWE-415
 Double Free 		CVE-2021-42778 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 15:28
2022-04-19 		Show GitHub Exploit DB Packet Storm
400 7.8
6.8 		HIGH
Local 		An out-of-bounds read/write vulnerability was found in e2fsprogs 1.46.5. This issue leads to a segmentation fault and possibly arbitrary code execution via a specially crafted filesystem. - CVE-2022-1304 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-22 21:15
2022-04-15 		Show GitHub Exploit DB Packet Storm