Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	商用ライセンス有り Linux

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
441	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
442	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
443	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
444	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
445	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
446	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
447	Red Hat Enterprise Linux 3	3.0						0	33	44	17
448	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
441	8.8 9.0	HIGH Network	The Samba vfs_fruit module uses extended file attributes (EA, xattr) to provide "...enhanced compatibility with Apple SMB clients and interoperability with a Netatalk 3 AFP fileserver." Samba version…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2021-44142	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 15:30 2022-02-22	Show	GitHub Exploit DB Packet Storm

442	5.5 2.1	MEDIUM Local	swtpm is a libtpms-based TPM emulator with socket, character device, and Linux CUSE interface. Versions prior to 0.5.3, 0.6.2, and 0.7.1 are vulnerable to out-of-bounds read. A specially crafted head…	-	CVE-2022-23645	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 15:49 2022-02-19	Show	GitHub Exploit DB Packet Storm

443	8.8 7.2	HIGH Local	A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State (SEV-ES). A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host ker…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2021-4093	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 15:36 2022-02-19	Show	GitHub Exploit DB Packet Storm

444	6.5 2.1	MEDIUM Local	An off-by-one error was found in the SCSI device emulation in QEMU. It could occur while processing MODE SELECT commands in mode_sense_page() if the 'page' argument was set to MODE_PAGE_ALLS (0x3f). …	CWE-193 Off-by-one Error	CVE-2021-3930	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 15:22 2022-02-19	Show	GitHub Exploit DB Packet Storm

445	9.8 7.5	CRITICAL Network	A flaw was found in mbsync versions prior to 1.4.4. Due to inadequate handling of extremely large (>=2GiB) IMAP literals, malicious or compromised IMAP servers, and hypothetically even external email…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-3657	cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 15:22 2022-02-19	Show	GitHub Exploit DB Packet Storm

446	4.7 4.7	MEDIUM Local	A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific way with OverlayFS. A local user could use this flaw to crash the syste…	CWE-362 Race Condition	CVE-2021-20321	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:46 2022-02-19	Show	GitHub Exploit DB Packet Storm

447	5.5 2.1	MEDIUM Local	A flaw was found in s390 eBPF JIT in bpf_jit_insn in arch/s390/net/bpf_jit_comp.c in the Linux kernel. In this flaw, a local attacker with special user privilege can circumvent the verifier and may l…	NVD-CWE-Other	CVE-2021-20320	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:46 2022-02-19	Show	GitHub Exploit DB Packet Storm

448	9.8 10.0	CRITICAL Network	Missing fixes for CVE-2021-40438 and CVE-2021-26691 in the versions of httpd, as shipped in Red Hat Enterprise Linux 8.5.0, causes a security regression compared to the versions shipped in Red Hat En…	CWE-787 CWE-918 Out-of-bounds Write Server-Side Request Forgery (SSRF)	CVE-2021-20325	cpe:2.3:o:redhat:enterprise_linux:8.5.0:*	2024-11-21 14:46 2022-02-19	Show	GitHub Exploit DB Packet Storm

449	7.2 9.0	HIGH Network	A flaw was found in the way Samba, as an Active Directory Domain Controller, implemented Kerberos name-based authentication. The Samba AD DC, could become confused about the user a ticket represents …	CWE-362 Race Condition	CVE-2020-25719	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:18 2022-02-19	Show	GitHub Exploit DB Packet Storm

450	8.1 8.5	HIGH Network	A flaw was found in the way Samba maps domain users to local users. An authenticated attacker could use this flaw to cause possible privilege escalation.	CWE-20 Improper Input Validation	CVE-2020-25717	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:18 2022-02-19	Show	GitHub Exploit DB Packet Storm