Software Detail

Software Informaton Top

Operating Systems

Software Detail

Red Hat Enterprise Linux

Number Of NVD

1680

CRITICAL

135

HIGH

590

MEDIUM

803

LOW

151

URL	https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation	Full support is 5.5 years from release. Maintenance support (security updates only) is for 3.5 years. After that, extended support is available for a fee.
Tag	Linux 商用ライセンス有り

Add Information URL

No	Type	Name	URL
1			https://access.redhat.com/ja/articles/16476
2			https://access.redhat.com/support/policy/updates/errata
3			https://access.redhat.com/articles/3078
4			https://access.redhat.com/security
5			https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Normal Support	Security Support Service Pack Support	Extended for a fee	Critical	High	Medium	Low
711	Red Hat Enterprise Linux 9	9.7	Nov. 11, 2025	May 17, 2022				4	127	172	17
712	Red Hat Enterprise Linux 8	8.10	May 22, 2024	May 7, 2019	May 30, 2029			43	314	444	50
713	Red Hat Enterprise Linux 7	7.9	Sept. 29, 2020	Dec. 11, 2013	Aug. 6, 2020	June 30, 2024		91	270	270	46
714	Red Hat Enterprise Linux 6	6.10	June 19, 2018	Nov. 9, 2010	May 10, 2022	Nov. 30, 2020	June 30, 2024	72	169	210	55
715	Red Hat Enterprise Linux 5	5.11	Sept. 16, 2014	March 15, 2007	March 31, 2017		Nov. 30, 2020	24	59	89	40
716	Red Hat Enterprise Linux 4	4.5			Feb. 29, 2012		March 31, 2017	5	30	29	16
717	Red Hat Enterprise Linux 3	3.0						0	33	44	17
718	Red Hat Enterprise Linux 2	2.1 Update 7	April 28, 2005					0	32	37	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	Update date Published date	Show Affected	Exploit PoC Search
711	6.5 4.0	MEDIUM Network	Ansible, versions 2.9.x before 2.9.1, 2.8.x before 2.8.7 and Ansible versions 2.7.x before 2.7.15, is not respecting the flag no_log set it to True when Sumologic and Splunk callback plugins are used…	-	CVE-2019-14864	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 13:27 2020-01-3	Show	GitHub Exploit DB Packet Storm

712	4.7 1.9	MEDIUM Local	Multiple race conditions in the (1) mount.cifs and (2) umount.cifs programs in Samba 3.6 allow local users to cause a denial of service (mounting outage) via a SIGKILL signal during a time window whe…	CWE-362 Race Condition	CVE-2011-3585	cpe:2.3:o:redhat:enterprise_linux:6.0:* cpe:2.3:o:redhat:enterprise_linux:5.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 10:30 2020-01-1	Show	GitHub Exploit DB Packet Storm

713	5.5 2.1	MEDIUM Local	A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_RES…	CWE-787 Out-of-bounds Write	CVE-2019-18391	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:33 2019-12-24	Show	GitHub Exploit DB Packet Storm

714	7.1 3.6	HIGH Local	An out-of-bounds read in the vrend_blit_need_swizzle function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service via VIRGL_CCMD_BLIT commands.	CWE-125 Out-of-bounds Read	CVE-2019-18390	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:33 2019-12-24	Show	GitHub Exploit DB Packet Storm

715	7.8 4.6	HIGH Local	A heap-based buffer overflow in the vrend_renderer_transfer_write_iov function in vrend_renderer.c in virglrenderer through 0.8.0 allows guest OS users to cause a denial of service, or QEMU guest-to-…	CWE-787 Out-of-bounds Write	CVE-2019-18389	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:33 2019-12-24	Show	GitHub Exploit DB Packet Storm

716	8.2 6.4	HIGH Network	A flaw was found in Ansible Tower, versions 3.6.x before 3.6.2 and 3.5.x before 3.5.3, where enabling RabbitMQ manager by setting it with '-e rabbitmq_enable_manager=true' exposes the RabbitMQ manage…	CWE-1188 Insecure Default Initialization of Resource	CVE-2019-19340	cpe:2.3:o:redhat:enterprise_linux:7.0:*	2024-11-21 13:34 2019-12-20	Show	GitHub Exploit DB Packet Storm

717	7.5 5.0	HIGH Network	cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by a…	CWE-787 CWE-193 Out-of-bounds Write Off-by-one Error	CVE-2019-19906	cpe:2.3:o:redhat:enterprise_linux:8.0:* cpe:2.3:o:redhat:enterprise_linux:7.0:* cpe:2.3:o:redhat:enterprise_linux…	2024-11-21 13:35 2019-12-20	Show	GitHub Exploit DB Packet Storm

718	6.5 5.5	MEDIUM Network	Versions of the npm CLI prior to 6.13.4 are vulnerable to an Arbitrary File Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. For e…	CWE-269 Improper Privilege Management	CVE-2019-16777	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:31 2019-12-13	Show	GitHub Exploit DB Packet Storm

719	8.1 5.5	HIGH Network	Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It fails to prevent access to folders outside of the intended node_modules folder through the bin field. A properly …	CWE-22 Path Traversal	CVE-2019-16776	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:31 2019-12-13	Show	GitHub Exploit DB Packet Storm

720	6.5 4.0	MEDIUM Network	Versions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It is possible for packages to create symlinks to files outside of thenode_modules folder through the bin field upon…	-	CVE-2019-16775	cpe:2.3:o:redhat:enterprise_linux:8.0:*	2024-11-21 13:31 2019-12-13	Show	GitHub Exploit DB Packet Storm