← Back

Redhat

redhat

5,653 CVEs • 536 products

Products (536)

Click to collapse
Toggle
Enterprise Linux Desktop
enterprise_linux_desktop
1,928 CVEs
Enterprise Linux Server
enterprise_linux_server
1,891 CVEs
Enterprise Linux Workstation
enterprise_linux_workstation
1,845 CVEs
Enterprise Linux
enterprise_linux
1,788 CVEs
Enterprise Linux Server Aus
enterprise_linux_server_aus
1,058 CVEs
Enterprise Linux Eus
enterprise_linux_eus
779 CVEs
Enterprise Linux Server Tus
enterprise_linux_server_tus
767 CVEs
Enterprise Linux Server Eus
enterprise_linux_server_eus
622 CVEs
Openshift Container Platform
openshift_container_platform
297 CVEs
Jboss Enterprise Application Platform
jboss_enterprise_application_platform
243 CVEs
Linux
linux
229 CVEs
Satellite
satellite
225 CVEs
Openstack
openstack
210 CVEs
Enterprise Linux Hpc Node
enterprise_linux_hpc_node
146 CVEs
Openshift
openshift
146 CVEs
Software Collections
software_collections
136 CVEs
Virtualization
virtualization
128 CVEs
Enterprise Linux For Ibm Z Systems
enterprise_linux_for_ibm_z_systems
112 CVEs
Single Sign On
single_sign_on
112 CVEs
Enterprise Linux For Power Little Endian
enterprise_linux_for_power_little_endian
106 CVEs
Keycloak
keycloak
98 CVEs
Enterprise Linux For Power Little Endian Eus
enterprise_linux_for_power_little_endian_eus
93 CVEs
Enterprise Linux For Ibm Z Systems Eus
enterprise_linux_for_ibm_z_systems_eus
87 CVEs
Enterprise Linux Workstation Supplementary
enterprise_linux_workstation_supplementary
86 CVEs
Enterprise Linux Desktop Supplementary
enterprise_linux_desktop_supplementary
84 CVEs
Enterprise Linux Server Supplementary
enterprise_linux_server_supplementary
84 CVEs
Virtualization Host
virtualization_host
84 CVEs
Enterprise Linux Server Supplementary Eus
enterprise_linux_server_supplementary_eus
83 CVEs
Enterprise Linux Hpc Node Eus
enterprise_linux_hpc_node_eus
81 CVEs
Fedora Core
fedora_core
77 CVEs
Enterprise Mrg
enterprise_mrg
73 CVEs
Libvirt
libvirt
73 CVEs
Enterprise Linux For Scientific Computing
enterprise_linux_for_scientific_computing
71 CVEs
Linux Advanced Workstation
linux_advanced_workstation
65 CVEs
Ansible Tower
ansible_tower
64 CVEs
Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions
enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions
63 CVEs
Build Of Keycloak
build_of_keycloak
55 CVEs
Cloudforms
cloudforms
48 CVEs
Enterprise Linux For Arm 64
enterprise_linux_for_arm_64
46 CVEs
Enterprise Linux For Power Big Endian
enterprise_linux_for_power_big_endian
45 CVEs
Ansible
ansible
45 CVEs
Ceph Storage
ceph_storage
45 CVEs
Enterprise Linux Aus
enterprise_linux_aus
44 CVEs
Linux Desktop
linux_desktop
44 CVEs
Linux Server
linux_server
44 CVEs
Linux Workstation
linux_workstation
44 CVEs
Enterprise Linux Server Update Services For Sap Solutions
enterprise_linux_server_update_services_for_sap_solutions
43 CVEs
Enterprise Linux For Real Time
enterprise_linux_for_real_time
43 CVEs
Cloudforms Management Engine
cloudforms_management_engine
42 CVEs
Jboss Fuse
jboss_fuse
42 CVEs
Codeready Linux Builder
codeready_linux_builder
42 CVEs
Undertow
undertow
40 CVEs
Openstack Platform
openstack_platform
39 CVEs
Enterprise Linux For Real Time For Nfv
enterprise_linux_for_real_time_for_nfv
37 CVEs
Enterprise Linux For Arm 64 Eus
enterprise_linux_for_arm_64_eus
37 CVEs
Enterprise Virtualization
enterprise_virtualization
36 CVEs
Jboss Enterprise Web Server
jboss_enterprise_web_server
35 CVEs
Jboss Core Services
jboss_core_services
33 CVEs
Openshift Application Runtimes
openshift_application_runtimes
33 CVEs
Storage
storage
31 CVEs
Quay
quay
31 CVEs
Fuse
fuse
28 CVEs
Directory Server
directory_server
27 CVEs
Gluster Storage
gluster_storage
25 CVEs
Jboss Data Grid
jboss_data_grid
25 CVEs
Ansible Engine
ansible_engine
25 CVEs
Enterprise Linux Update Services For Sap Solutions
enterprise_linux_update_services_for_sap_solutions
25 CVEs
Jboss Operations Network
jboss_operations_network
24 CVEs
Process Automation
process_automation
24 CVEs
Ansible Automation Platform
ansible_automation_platform
24 CVEs
Jboss Enterprise Brms Platform
jboss_enterprise_brms_platform
23 CVEs
Openshift Container Platform For Power
openshift_container_platform_for_power
23 CVEs
Hardened Images
hardened_images
23 CVEs
Jboss Enterprise Portal Platform
jboss_enterprise_portal_platform
22 CVEs
Enterprise Linux For Real Time For Nfv Tus
enterprise_linux_for_real_time_for_nfv_tus
22 CVEs
Jboss Enterprise Web Platform
jboss_enterprise_web_platform
21 CVEs
Data Grid
data_grid
21 CVEs
Enterprise Linux For Real Time Tus
enterprise_linux_for_real_time_tus
21 CVEs
Openshift Service Mesh
openshift_service_mesh
21 CVEs
Build Of Quarkus
build_of_quarkus
21 CVEs
Enterprise Linux For Power Big Endian Eus
enterprise_linux_for_power_big_endian_eus
20 CVEs
Enterprise Linux Tus
enterprise_linux_tus
20 CVEs
Decision Manager
decision_manager
20 CVEs
Codeready Linux Builder Eus
codeready_linux_builder_eus
20 CVEs
Integration Camel K
integration_camel_k
20 CVEs
Enterprise Virtualization Manager
enterprise_virtualization_manager
19 CVEs
Certificate System
certificate_system
18 CVEs
Resteasy
resteasy
18 CVEs
Jboss Bpm Suite
jboss_bpm_suite
18 CVEs
Wildfly
wildfly
18 CVEs
Codeready Linux Builder For Arm64 Eus
codeready_linux_builder_for_arm64_eus
18 CVEs
Codeready Linux Builder For Ibm Z Systems Eus
codeready_linux_builder_for_ibm_z_systems_eus
18 CVEs
Jboss Enterprise Soa Platform
jboss_enterprise_soa_platform
17 CVEs
Jboss A Mq
jboss_a-mq
17 CVEs
Ceph
ceph
17 CVEs
Codeready Linux Builder For Power Little Endian Eus
codeready_linux_builder_for_power_little_endian_eus
17 CVEs
Openshift Container Platform For Linuxone
openshift_container_platform_for_linuxone
17 CVEs
Jboss Enterprise Application Platform Expansion Pack
jboss_enterprise_application_platform_expansion_pack
17 CVEs
Codeready Linux Builder For Ibm Z Systems
codeready_linux_builder_for_ibm_z_systems
16 CVEs
Codeready Linux Builder For Power Little Endian
codeready_linux_builder_for_power_little_endian
16 CVEs

CVEs (5,653)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-6283
4Centos
FedoraprojectOracle+1 more
9Centos
Enterprise LinuxEnterprise Linux Desktop+6 more
Apr 23, 2026
Dec 18, 2007
N/A· v4
N/A· v3
4.9 MEDIUM· v2
Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping...Show more
Red Hat Enterprise Linux 5 and Fedora install the Bind /etc/rndc.key file with world-readable permissions, which allows local users to perform unauthorized named commands, such as causing a denial of service by stopping named.Show less
CVE-2007-5964
1Redhat
1Enterprise Linux
Apr 23, 2026
Dec 13, 2007
N/A· v4
N/A· v3
6.9 MEDIUM· v2
The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a...Show more
The default configuration of autofs 5 in some Linux distributions, such as Red Hat Enterprise Linux (RHEL) 5, omits the nosuid option for the hosts (/net filesystem) map, which allows local users to gain privileges via a setuid program on a remote NFS server.Show less
CVE-2007-6206
6Canonical
DebianLinux+3 more
12Debian Linux
Enterprise Linux DesktopEnterprise Linux Eus+9 more
Apr 23, 2026
Dec 4, 2007
N/A· v4
N/A· v3
2.1 LOW· v2
The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in t...Show more
The do_coredump function in fs/exec.c in Linux kernel 2.4.x and 2.6.x up to 2.6.24-rc3, and possibly other versions, does not change the UID of a core dump file if it exists before a root process creates a core dump in the same location, which might allow local users to obtain sensitive information.Show less
CVE-2006-7226
1Redhat
2Enterprise Linux
Enterprise Linux Desktop
Apr 23, 2026
Dec 3, 2007
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subrou...Show more
Perl-Compatible Regular Expression (PCRE) library before 6.7 does not properly calculate the compiled memory allocation for regular expressions that involve a quantified "subpattern containing a named recursion or subroutine reference," which allows context-dependent attackers to cause a denial of service (error or crash).Show less
CVE-2007-5494
1Redhat
1Enterprise Linux
Apr 23, 2026
Nov 30, 2007
N/A· v4
N/A· v3
4.9 MEDIUM· v2
Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and 5 allows local users to cause a denial of service (memory consumption) via a large number of open requests involving O_...Show more
Memory leak in the Red Hat Content Accelerator kernel patch in Red Hat Enterprise Linux (RHEL) 4 and 5 allows local users to cause a denial of service (memory consumption) via a large number of open requests involving O_ATOMICLOOKUP.Show less
CVE-2007-5503
1Redhat
1Cairo
Apr 23, 2026
Nov 30, 2007
N/A· v4
N/A· v3
6.8 MEDIUM· v2
Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the...Show more
Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the read_png function.Show less
CVE-2007-6181
1Redhat
1Cygwin
Apr 23, 2026
Nov 30, 2007
N/A· v4
N/A· v3
8.5 HIGH· v2
Heap-based buffer overflow in cygwin1.dll in Cygwin 1.5.7 and earlier allows context-dependent attackers to execute arbitrary code via a filename with a certain length, as demonstrated by a remote authenticated user who...Show more
Heap-based buffer overflow in cygwin1.dll in Cygwin 1.5.7 and earlier allows context-dependent attackers to execute arbitrary code via a filename with a certain length, as demonstrated by a remote authenticated user who uses the SCP protocol to send a file to the Cygwin machine, and thereby causes scp.exe on this machine to execute, and then overwrite heap memory with characters from the filename. NOTE: it is also reported that a related issue might exist in 1.5.7 through 1.5.19.Show less
CVE-2007-6131
1Redhat
1Fedora Core
Apr 23, 2026
Nov 26, 2007
N/A· v4
N/A· v3
2.1 LOW· v2
buttonpressed.sh in scanbuttond 0.2.3 allows local users to overwrite arbitrary files via a symlink attack on the (1) scan.pnm and (2) scan.jpg temporary files.
CVE-2007-4136
1Redhat
1Conga
Apr 23, 2026
Nov 14, 2007
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The ricci daemon in Red Hat Conga 0.10.0 allows remote attackers to cause a denial of service (loss of new connections) by repeatedly sending data or attempting connections.
CVE-2007-4570
1Redhat
1Mcstrans
Apr 23, 2026
Nov 10, 2007
N/A· v4
N/A· v3
1.9 LOW· v2
Algorithmic complexity vulnerability in the MCS translation daemon in mcstrans 0.2.3 allows local users to cause a denial of service (temporary daemon outage) via a large range of compartments in sensitivity labels.
CVE-2007-5116
4Larry Wall
MandrakesoftOpenpkg+1 more
4Enterprise Linux
Mandrake Multi Network FirewallOpenpkg+1 more
Apr 23, 2026
Nov 7, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters i...Show more
Buffer overflow in the polymorphic opcode support in the Regular Expression Engine (regcomp.c) in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode (UTF) characters in a regular expression.Show less
CVE-2007-4994
1Redhat
1Certificate Server
Apr 23, 2026
Nov 6, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
Certificate Server 7.2 in Red Hat Certificate System (RHCS) does not properly handle new revocations that occur while a Certificate Revocation List (CRL) is being generated, which might prevent certain revoked certificat...Show more
Certificate Server 7.2 in Red Hat Certificate System (RHCS) does not properly handle new revocations that occur while a Certificate Revocation List (CRL) is being generated, which might prevent certain revoked certificates from appearing on the CRL quickly and allow users with revoked certificates to bypass the intended CRL.Show less
CVE-2007-4574
1Redhat
1Enterprise Linux
Apr 23, 2026
Oct 23, 2007
N/A· v4
N/A· v3
4.7 MEDIUM· v2
Unspecified vulnerability in the "stack unwinder fixes" in kernel in Red Hat Enterprise Linux 5, when running on AMD64 and Intel 64, allows local users to cause a denial of service via unknown vectors.
CVE-2007-5365
5Debian
OpenbsdRedhat+2 more
7Debian Linux
Enterprise LinuxLinux Advanced Workstation+4 more
Apr 23, 2026
Oct 11, 2007
N/A· v4
N/A· v3
7.2 HIGH· v2
Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or ca...Show more
Stack-based buffer overflow in the cons_options function in options.c in dhcpd in OpenBSD 4.0 through 4.2, and some other dhcpd implementations based on ISC dhcp-2, allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a DHCP request specifying a maximum message size smaller than the minimum IP MTU.Show less
CVE-2007-5079
1Redhat
1Linux
Apr 23, 2026
Sep 25, 2007
N/A· v4
N/A· v3
6.0 MEDIUM· v2
Red Hat Enterprise Linux 4 does not properly compile and link gdm with tcp_wrappers on x86_64 platforms, which might allow remote attackers to bypass intended access restrictions.
CVE-2007-1865
1Redhat
1Enterprise Linux
Apr 23, 2026
Sep 18, 2007
N/A· v4
N/A· v3
1.9 LOW· v2
The ipv6_getsockopt_sticky function in the kernel in Red Hat Enterprise Linux (RHEL) Beta 5.1.0 allows local users to obtain sensitive information (kernel memory contents) via a negative value of the len parameter. NOTE...Show more
The ipv6_getsockopt_sticky function in the kernel in Red Hat Enterprise Linux (RHEL) Beta 5.1.0 allows local users to obtain sensitive information (kernel memory contents) via a negative value of the len parameter. NOTE: this issue has been disputed in a bug comment, stating that "len is ignored when copying header info to the user's buffer.Show less
CVE-2007-0004
1Redhat
1Enterprise Linux
Apr 23, 2026
Sep 18, 2007
N/A· v4
N/A· v3
1.9 LOW· v2
The NFS client implementation in the kernel in Red Hat Enterprise Linux (RHEL) 3, when a filesystem is mounted with the noacl option, checks permissions for the open system call via vfs_permission (mode bits) data rather...Show more
The NFS client implementation in the kernel in Red Hat Enterprise Linux (RHEL) 3, when a filesystem is mounted with the noacl option, checks permissions for the open system call via vfs_permission (mode bits) data rather than an NFS ACCESS call to the server, which allows local client processes to obtain a false success status from open calls that the server would deny, and possibly obtain sensitive information about file permissions on the server, as demonstrated in a root_squash environment. NOTE: it is uncertain whether any scenarios involving this issue cross privilege boundaries.Show less
CVE-2007-3379
1Redhat
2Enterprise Linux
Linux
Apr 23, 2026
Sep 17, 2007
N/A· v4
N/A· v3
2.1 LOW· v2
Unspecified vulnerability in the kernel in Red Hat Enterprise Linux (RHEL) 4 on the x86_64 platform allows local users to cause a denial of service (OOPS) via unspecified vectors related to the get_gate_vma function and...Show more
Unspecified vulnerability in the kernel in Red Hat Enterprise Linux (RHEL) 4 on the x86_64 platform allows local users to cause a denial of service (OOPS) via unspecified vectors related to the get_gate_vma function and the fuser command.Show less
CVE-2007-3739
1Redhat
1Enterprise Linux
Apr 23, 2026
Sep 14, 2007
N/A· v4
N/A· v3
4.7 MEDIUM· v2
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified...Show more
mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expansion from entering into reserved kernel page memory, which allows local users to cause a denial of service (OOPS) via unspecified vectors.Show less
CVE-2007-3849
1Redhat
1Enterprise Linux
Apr 23, 2026
Sep 5, 2007
N/A· v4
N/A· v3
1.9 LOW· v2
Red Hat Enterprise Linux (RHEL) 5 ships the rpm for the Advanced Intrusion Detection Environment (AIDE) before 0.13.1 with a database that lacks checksum information, which allows context-dependent attackers to bypass fi...Show more
Red Hat Enterprise Linux (RHEL) 5 ships the rpm for the Advanced Intrusion Detection Environment (AIDE) before 0.13.1 with a database that lacks checksum information, which allows context-dependent attackers to bypass file integrity checks and modify certain files.Show less