Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	Linux 商用ライセンス有り

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
651	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
652	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
653	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
654	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
655	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
656	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
657	Red Hat Enterprise Linux 3	3.0						0	33	44	17
658	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
651	6.0 3.6	MEDIUM Local	There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with bu…	CWE-190 Integer Overflow or Wraparound	CVE-2020-14310	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:02 2020-08-1	Show	GitHub Exploit DB Packet Storm

652	6.4 4.4	MEDIUM Local	Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not include…	CWE-362 CWE-190 Race Condition Integer Overflow or Wraparound	CVE-2020-15707	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:06 2020-07-30	Show	GitHub Exploit DB Packet Storm

653	6.4 4.4	MEDIUM Local	GRUB2 contains a race condition in grub_script_function_create() leading to a use-after-free vulnerability which can be triggered by redefining a function whilst the same function is already executin…	CWE-362 CWE-416 Race Condition Use After Free	CVE-2020-15706	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:06 2020-07-30	Show	GitHub Exploit DB Packet Storm

654	6.4 4.4	MEDIUM Local	GRUB2 fails to validate kernel signature when booted directly without shim, allowing secure boot to be bypassed. This only affects systems where the kernel signing certificate has been imported direc…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2020-15705	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 14:06 2020-07-30	Show	GitHub Exploit DB Packet Storm

655	4.2 4.0	MEDIUM Network	libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subject…	CWE-295 Improper Certificate Validation	CVE-2020-15719	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 14:06 2020-07-14	Show	GitHub Exploit DB Packet Storm

656	5.5 2.1	MEDIUM Local	A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (…	CWE-203 Information Exposure Through Discrepancy	CVE-2019-19338	cpe:2.3:o:redhat:enterprise_linux:6.0:*	2024-11-21 13:34 2020-07-14	Show	GitHub Exploit DB Packet Storm

657	6.5 2.1	MEDIUM Local	An out-of-bounds read vulnerability was found in the SLiRP networking implementation of the QEMU emulator. This flaw occurs in the icmp6_send_echoreply() routine while replying to an ICMP echo reques…	CWE-125 Out-of-bounds Read	CVE-2020-10756	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 13:56 2020-07-10	Show	GitHub Exploit DB Packet Storm

658	5.5 2.1	MEDIUM Local	A buffer over-read flaw was found in RH kernel versions before 5.0 in crypto_authenc_extractkeys in crypto/authenc.c in the IPsec Cryptographic algorithm's module, authenc. When a payload longer than…	CWE-125 Out-of-bounds Read	CVE-2020-10769	cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 13:56 2020-06-27	Show	GitHub Exploit DB Packet Storm

659	5.0 4.0	MEDIUM Network	An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near th…	CWE-617 Reachable Assertion	CVE-2020-10761	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:56 2020-06-9	Show	GitHub Exploit DB Packet Storm

660	7.8 6.9	HIGH Local	A flaw was found in the Linux Kernel in versions after 4.5-rc1 in the way mremap handled DAX Huge Pages. This flaw allows a local attacker with access to a DAX enabled storage to escalate their privi…	CWE-119 CWE-843 Incorrect Access of Indexable Resource ('Range Error') Type Confusion	CVE-2020-10757	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 13:56 2020-06-9	Show	GitHub Exploit DB Packet Storm