Red hat enterprise linux
This hub aggregates every CVE we track for Red hat enterprise linux, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.
7,293
CVEs tracked
513
Critical
2,665
High
82
In CISA KEV
Severity distribution
MEDIUM3,874HIGH2,665CRITICAL513LOW241
Monthly trend
96
73
114
93
86
64
51
113
58
162
65
255
64
247
277
70
120
9
2
47
26
49
31
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Red hat enterprise linux.
- CVE-2026-4367Libxpm: libxpm: denial of service via out-of-bounds read in xpm file parsing5.5
- CVE-2026-46331net/sched: fix pedit partial COW leading to page cache corruption7.8
- CVE-2026-42014Gnutls: gnutls: use-after-free in gnutls_pkcs11_token_set_pin6.6
- CVE-2026-52718Gstreamer1-plugins-bad-free: gstreamer: denial of service via av1 tile_list_obu parser byte/bit confusion6.5
- CVE-2026-52722Gstreamer1-plugins-bad-free: gstreamer: signed integer overflow in vmnc decoder cursor payload handling7.1
- CVE-2026-52720Gstreamer1-plugins-bad-free: gstreamer: heap buffer overflow via crafted vnc server rectangle in librfb8.8
- CVE-2026-53704Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer fileinfo metadata parser7.1
- CVE-2026-53703Gstreamer1-plugins-ugly-free: gstreamer: out-of-bounds read in realmedia demuxer audio stream header parser7.1
- CVE-2026-52721Gstreamer1-plugins-bad-free: gstreamer: multiple out-of-bounds reads in pcapparse ipv4/tcp header parsing5.3
- CVE-2026-53705Gstreamer1-plugins-good: gstreamer: heap buffer overflow in wavpack decoder via integer overflow7.6
- CVE-2026-52719Gstreamer1-plugins-bad-free: gstreamer: out-of-bounds read via jpeg segment length validation in va decoder7.1
- CVE-2026-54231Abrt: unsanitized systemd journal content written to dump directory files enables content injection5.5
- CVE-2026-54230Abrt: event handler scripts follow symlinks when writing output files, allowing arbitrary file overwrites7.0
- CVE-2026-54229Abrt: chownproblemdir succeeds during active post-create event processing due to inadequate locking7.0
- CVE-2026-54228Abrt: toctou race condition in abrt-dbus setelement allows arbitrary file writes to dump directories7.8
Product normalization is registry-driven with AI assist and human review. How it works