Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	商用ライセンス有り Linux

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
511	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
512	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
513	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
514	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
515	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
516	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
517	Red Hat Enterprise Linux 3	3.0						0	33	44	17
518	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
511	7.8 6.8	HIGH Local	There's a flaw in libxml2's xmllint in versions before 2.9.11. An attacker who is able to submit a crafted file to be processed by xmllint could trigger a use-after-free. The greatest impact of this …	CWE-416 Use After Free	CVE-2021-3516	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 15:21 2021-06-1	Show	GitHub Exploit DB Packet Storm

512	8.8 6.5	HIGH Network	A flaw was found in postgresql in versions before 13.3, before 12.7, before 11.12, before 10.17 and before 9.6.22. While modifying certain SQL array values, missing bounds checks let authenticated da…	-	CVE-2021-32027	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 15:06 2021-06-1	Show	GitHub Exploit DB Packet Storm

513	6.7 7.2	MEDIUM Local	There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of…	-	CVE-2021-20292	cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 14:46 2021-05-28	Show	GitHub Exploit DB Packet Storm

514	3.3 2.1	LOW Local	A flaw was found in the Linux kernel in versions before 5.4.92 in the BPF protocol. This flaw allows an attacker with a local account to leak information about kernel internal addresses. The highest …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-20239	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 14:46 2021-05-28	Show	GitHub Exploit DB Packet Storm

515	9.8 7.5	CRITICAL Network	A flaw was found in the ZeroMQ server in versions before 4.3.3. This flaw allows a malicious client to cause a stack buffer overflow on the server by sending crafted topic subscription requests and t…	CWE-787 Out-of-bounds Write	CVE-2021-20236	cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:46 2021-05-28	Show	GitHub Exploit DB Packet Storm

516	5.3 5.0	MEDIUM Network	A flaw was found in spice in versions before 0.14.92. A DoS tool might make it easier for remote attackers to cause a denial of service (CPU consumption) by performing many renegotiations within a si…	NVD-CWE-Other	CVE-2021-20201	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 14:46 2021-05-28	Show	GitHub Exploit DB Packet Storm

517	7.5 5.0	HIGH Network	A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23(). The highest th…	-	CVE-2020-25710	cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 14:18 2021-05-28	Show	GitHub Exploit DB Packet Storm

518	3.3 4.3	LOW Local	A malicious container image can consume an unbounded amount of memory when being pulled to a container runtime host, such as Red Hat Enterprise Linux using podman, or OpenShift Container Platform. An…	-	CVE-2020-1702	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 14:11 2021-05-28	Show	GitHub Exploit DB Packet Storm

519	6.5 4.0	MEDIUM Network	An information disclosure vulnerability was found in libvirt in versions before 6.3.0. HTTP cookies used to access network-based disks were saved in the XML dump of the guest domain. This flaw allows…	-	CVE-2020-14301	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 14:02 2021-05-28	Show	GitHub Exploit DB Packet Storm

520	5.5 4.3	MEDIUM Local	An assertion abort was found in upx MemBuffer::alloc() in mem.cpp, in version UPX 4.0.0. The flow allows attackers to cause a denial of service (abort) via a crafted file.	CWE-617 Reachable Assertion	CVE-2021-30501	cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 15:04 2021-05-27	Show	GitHub Exploit DB Packet Storm