Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Red Hat Enterprise Linux Number Of NVD 1681 CRITICAL 136 HIGH 590 MEDIUM 803 LOW 151
URL https://www.redhat.com/technologies/linux-platforms/enterprise-linux
Explanation Full support is 5.5 years from release.
Maintenance support (security updates only) is for 3.5 years.
After that, extended support is available for a fee.
Tag
  • 商用ライセンス有り
  • Linux
Add Information URL
No Type Name URL
1 https://access.redhat.com/ja/articles/16476
2 https://access.redhat.com/support/policy/updates/errata
3 https://access.redhat.com/articles/3078
4 https://access.redhat.com/security
5 https://access.redhat.com/errata/#/?q=&p=1&sort=portal_publication_date%20desc&rows=10&portal_advisory_type=Security%20Advisory
List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support		 Extended
for a fee		 Critical High Medium Low
911 Red Hat Enterprise Linux 9 9.7 Nov. 11, 2025 May 17, 2022 5 127 172 17
912 Red Hat Enterprise Linux 8 8.10 May 22, 2024 May 7, 2019 May 30, 2029 44 314 444 50
913 Red Hat Enterprise Linux 7 7.9 Sept. 29, 2020 Dec. 11, 2013 Aug. 6, 2020 June 30, 2024 92 270 270 46
914 Red Hat Enterprise Linux 6 6.10 June 19, 2018 Nov. 9, 2010 May 10, 2022 Nov. 30, 2020 June 30, 2024 73 169 210 55
915 Red Hat Enterprise Linux 5 5.11 Sept. 16, 2014 March 15, 2007 March 31, 2017 Nov. 30, 2020 24 59 89 40
916 Red Hat Enterprise Linux 4 4.5 Feb. 29, 2012 March 31, 2017 5 30 29 16
917 Red Hat Enterprise Linux 3 3.0 0 33 44 17
918 Red Hat Enterprise Linux 2 2.1 Update 7 April 28, 2005 0 32 37 6
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2		 Level
Attach Vector		 Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date		 Show Affected Exploit
PoC
Search
911 7.8
4.6 		HIGH
Local 		A heap-based buffer overflow exists in GNU Bash before 4.3 when wide characters, not supported by the current locale set in the LC_CTYPE environment variable, are printed through the echo built-in fu… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2012-6711 cpe:2.3:o:redhat:enterprise_linux:7.0:* 2024-11-21 10:46
2019-06-19 		Show GitHub Exploit DB Packet Storm
912 8.8
6.8 		HIGH
Network 		An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted gem with a multi-line name is not handled correctly. Therefore, an attacker could inject arbitrary code to the stub line of … CWE-94
Code Injection 		CVE-2019-8324 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:49
2019-06-18 		Show GitHub Exploit DB Packet Storm
913 9.8
7.5 		CRITICAL
Network 		A flaw was found in the Linux kernel. A heap based buffer overflow in mwifiex_uap_parse_tail_ies function in drivers/net/wireless/marvell/mwifiex/ie.c might lead to memory corruption and possibly oth… - CVE-2019-10126 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:18
2019-06-14 		Show GitHub Exploit DB Packet Storm
914 3.1
3.5 		LOW
Network 		The Libreswan Project has found a vulnerability in the processing of IKEv1 informational exchange packets which are encrypted and integrity protected using the established IKE SA encryption and integ… CWE-354
 Improper Validation of Integrity Check Value 		CVE-2019-10155 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:18
2019-06-12 		Show GitHub Exploit DB Packet Storm
915 7.0
4.4 		HIGH
Local 		An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to … CWE-787
CWE-191
 Out-of-bounds Write
 Integer Underflow (Wrap or Wraparound) 		CVE-2019-9755 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:52
2019-06-6 		Show GitHub Exploit DB Packet Storm
916 4.1
4.7 		MEDIUM
Local 		An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attac… CWE-476
 NULL Pointer Dereference 		CVE-2019-12614 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:* 		2024-11-21 13:23
2019-06-4 		Show GitHub Exploit DB Packet Storm
917 9.8
7.5 		CRITICAL
Network 		The CalDAV feature in httpd in Cyrus IMAP 2.5.x through 2.5.12 and 3.0.x through 3.0.9 allows remote attackers to execute arbitrary code via a crafted HTTP PUT operation for an event with a long iCal… CWE-787
 Out-of-bounds Write 		CVE-2019-11356 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:20
2019-06-4 		Show GitHub Exploit DB Packet Storm
918 8.8
8.3 		HIGH
Adjacent 		A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network. - CVE-2019-3846 cpe:2.3:o:redhat:enterprise_linux:8.0:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*
cpe:2.3:o:redhat:enterprise_linux… 		2024-11-21 13:42
2019-06-4 		Show GitHub Exploit DB Packet Storm
919 9.8
7.5 		CRITICAL
Network 		file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy operation is in progress. Instead, default permissions are used. CWE-362
CWE-276
Race Condition
Incorrect Default Permissions  		CVE-2019-12450 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:22
2019-05-30 		Show GitHub Exploit DB Packet Storm
920 7.0
6.9 		HIGH
Local 		It was discovered freeradius up to and including version 3.0.19 does not correctly configure logrotate, allowing a local attacker who already has control of the radiusd user to escalate his privilege… - CVE-2019-10143 cpe:2.3:o:redhat:enterprise_linux:8.0:* 2024-11-21 13:18
2019-05-25 		Show GitHub Exploit DB Packet Storm