Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1680 CRITICAL 135 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • Linux
  • 商用ライセンス有り
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
551 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 4 127 172 17
552 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 43 314 444 50
553 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 91 270 270 46
554 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 72 169 210 55
555 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
556 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
557 Red Hat Enterprise Linux 3 3.0 0 33 44 17
558 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
551 7.8
7.2 		HIGH
Local 		A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is… - CVE-2021-3472 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 15:21
2021-04-27 		Show GitHub Exploit DB Packet Storm
552 6.1
4.9 		MEDIUM
Local 		A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vul… CWE-269
 Improper Privilege Management 		CVE-2021-20208 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 14:46
2021-04-20 		Show GitHub Exploit DB Packet Storm
553 5.5
2.1 		MEDIUM
Local 		A flaw was found in libtpms in versions before 0.8.0. The TPM 2 implementation returns 2048 bit keys with ~1984 bit strength due to a bug in the TCG specification. The bug is in the key creation algo… - CVE-2021-3505 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:21
2021-04-20 		Show GitHub Exploit DB Packet Storm
554 7.8
6.8 		HIGH
Local 		GStreamer before 1.18.4 might cause heap corruption when parsing certain malformed Matroska files. CWE-787
 Out-of-bounds Write 		CVE-2021-3498 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 15:21
2021-04-20 		Show GitHub Exploit DB Packet Storm
555 7.8
6.8 		HIGH
Local 		GStreamer before 1.18.4 might access already-freed memory in error code paths when demuxing certain malformed Matroska files. CWE-416
 Use After Free 		CVE-2021-3497 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 15:21
2021-04-20 		Show GitHub Exploit DB Packet Storm
556 6.5
6.4 		MEDIUM
Network 		A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata() in jp2image.cpp can lead to a heap-based buff… CWE-787
 Out-of-bounds Write 		CVE-2021-3482 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:21
2021-04-9 		Show GitHub Exploit DB Packet Storm
557 4.0
4.3 		MEDIUM
Network 		A flaw was found in dnsmasq in versions before 2.85. When configured to use a specific server for a given network interface, dnsmasq uses a fixed port while forwarding queries. An attacker on the net… NVD-CWE-Other
CVE-2021-3448 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:21
2021-04-9 		Show GitHub Exploit DB Packet Storm
558 8.1
6.8 		HIGH
Network 		A flaw was found in Nettle in versions before 3.7.2, where several Nettle signature verification functions (GOST DSA, EDDSA & ECDSA) result in the Elliptic Curve Cryptography point (ECC) multiply fun… CWE-787
 Out-of-bounds Write 		CVE-2021-20305 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 14:46
2021-04-6 		Show GitHub Exploit DB Packet Storm
559 6.5
7.1 		MEDIUM
Network 		A deadlock vulnerability was found in 'github.com/containers/storage' in versions before 1.28.1. When a container image is processed, each layer is unpacked using `tar`. If one of those layers is not… - CVE-2021-20291 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 14:46
2021-04-2 		Show GitHub Exploit DB Packet Storm
560 4.3
3.5 		MEDIUM
Network 		An information leak was discovered in postgresql in versions before 13.2, before 12.6 and before 11.11. A user having UPDATE permission but not SELECT permission to a particular column could craft qu… - CVE-2021-3393 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 15:21
2021-04-1 		Show GitHub Exploit DB Packet Storm