Red Hat

919 tracked vulnerabilities.

CVE-2026-2100 MEDIUM
P11-kit: p11-kit: null dereference via c_derivekey with specific null parameters
Mar 26, 2026
CVSS 5.3
EPSS 0.01
CVE-2026-0968 LOW
Libssh: libssh: denial of service due to malformed sftp message
Mar 26, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-0967 MEDIUM
Libssh: libssh: denial of service via inefficient regular expression processing
Mar 26, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-0966 HIGH
Libssh: buffer underflow in ssh_get_hexa() on invalid input
Mar 26, 2026
CVSS 8.2
EPSS 0.01
CVE-2026-0965 LOW
Libssh: libssh: denial of service via improper configuration file handling
Mar 26, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-0964 MEDIUM
Libssh: improper sanitation of paths received from scp servers
Mar 26, 2026
CVSS 6.3
EPSS 0.00
CVE-2026-2436 MEDIUM
Libsoup: libsoup: denial of service via use-after-free in soupserver during tls handshake
Mar 26, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-3190 MEDIUM
Keycloak: keycloak: information disclosure via improper role enforcement in uma 2.0 protection api
Mar 26, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-3121 MEDIUM
Keycloak: org.keycloak/keycloak-services: keycloak: privilege escalation via manage-clients permission
Mar 26, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-4897 MEDIUM
Polkit: polkit: denial of service via unbounded input processing through standard input
Mar 26, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-4887 MEDIUM
Gimp: gimp:memory disclosure and denial of service via specially crafted pcx image
Mar 26, 2026
CVSS 6.1
EPSS 0.01
CVE-2026-1961 HIGH
Forman: foreman: remote code execution via command injection in websocket proxy
Mar 26, 2026
CVSS 8.0
EPSS 0.01
CVE-2026-4874 LOW
Org.keycloak.protocol.oidc.grants: org.keycloak.services.managers: keycloak: server-side request forgery via oidc token endpoint manipulation
Mar 26, 2026
CVSS 3.1
EPSS 0.00
CVE-2026-4775 HIGH
Libtiff: libtiff: arbitrary code execution or denial of service via signed integer overflow in tiff file processing
Mar 24, 2026
CVSS 7.8
EPSS 0.01
CVE-2026-1940 MEDIUM
Gstreamer: incomplete fix of cve-2026-1940
Mar 23, 2026
CVSS 5.1
EPSS 0.00
CVE-2026-4647 MEDIUM
Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library
Mar 23, 2026
CVSS 6.1
EPSS 0.00
CVE-2026-4633 LOW
Keycloak: keycloak: user enumeration via differential error messages
Mar 23, 2026
CVSS 3.7
EPSS 0.00
CVE-2026-4628 MEDIUM
Keycloak: org.keycloak.authorization: keycloak: unauthorized resource modification due to improper access control
Mar 23, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-23536 HIGH
Feast Feature Server - Unauthenticated Arbitrary File Read
Mar 20, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-4426 MEDIUM
Libarchive: libarchive: denial of service via malformed iso file processing
Mar 19, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-4424 HIGH
Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing
Mar 19, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-2369 MEDIUM
Libsoup: libsoup: buffer overread due to integer underflow when handling zero-length resources
Mar 19, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-4366 MEDIUM
Keycloak-services: blind server-side request forgery (ssrf) via http redirect handling in keycloak
Mar 18, 2026
CVSS 5.8
EPSS 0.00
CVE-2026-2575 MEDIUM
Keycloak: keycloak: denial of service due to excessive samlrequest decompression
Mar 18, 2026
CVSS 5.3
EPSS 0.01
CVE-2026-2603 HIGH
Keycloak: keycloak: unauthorized authentication via disabled saml identity provider
Mar 18, 2026
CVSS 8.1
EPSS 0.00
Products
Red Hat Enterprise Linux 9 539 Red Hat Enterprise Linux 8 537 Red Hat Enterprise Linux 10 456 Red Hat Enterprise Linux 7 448 Red Hat Enterprise Linux 6 408 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45