Red Hat

917 tracked vulnerabilities.

CVE-2026-54229 HIGH
Abrt: chownproblemdir succeeds during active post-create event processing due to inadequate locking
Jun 13, 2026
CVSS 7.0
EPSS 0.00
CVE-2026-54228 HIGH
Abrt: toctou race condition in abrt-dbus setelement allows arbitrary file writes to dump directories
Jun 13, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-48914 MEDIUM
Qemu-kvm: heap buffer overflow in virtio-blk scsi request handling
Jun 12, 2026
CVSS 6.7
EPSS 0.00
CVE-2026-53702 MEDIUM
Gstreamer1-plugins-bad-free: gstreamer: stack buffer overflow in h.265 buffering period sei parser
Jun 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-53701 MEDIUM
Gstreamer1-plugins-bad-free: gstreamer: out-of-bounds write in h.266/vvc pps picture partition parser
Jun 11, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-11774 HIGH
389-ds-base: 389-ds-base: integer overflow in sasl packet length bypasses size limit leading to heap buffer overflow
Jun 11, 2026
CVSS 7.6
EPSS 0.01
CVE-2026-11986 MEDIUM
Red Hat Keycloak admin-ui-ext - Authorization Bypass in Bulk Role Mapping Deletion
Jun 11, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-11850 MEDIUM
Krb5: krb5: integer underflow in berval2tl_data() leads to heap out-of-bounds read
Jun 11, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-6893 HIGH
Dracut: dracut: root code execution via dhcp options command injection
Jun 10, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-11884 MEDIUM
389 Directory Server - Heap Buffer Overflow in Objectclass Serialization
Jun 10, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-11837 HIGH
Ansible-collection-ansible-posix: ansible.posix authorized_key: local privilege escalation via symlink-following chown
Jun 10, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-11793 MEDIUM
389-ds-base: 389-ds-base: stack buffer overflow in checkprefix() algorithm id parsing
Jun 09, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-11792 LOW
389-ds-base: 389-ds-base: heap buffer overflow in audit log password masking (create_masked_entry_string)
Jun 09, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-11790 MEDIUM
389-ds-base: 389-ds-base: pbkdf2 password storage plugin unbounded iteration count denial of service
Jun 09, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-11789 MEDIUM
389-ds-base: 389-ds-base: smd5 password storage plugin salt length integer underflow crash
Jun 09, 2026
CVSS 4.9
EPSS 0.00
CVE-2026-11788 MEDIUM
389-ds-base: 389-ds-base: null pointer dereference in deref control plugin ber parser
Jun 09, 2026
CVSS 5.9
EPSS 0.00
CVE-2026-11787 MEDIUM
389-ds-base: 389-ds-base: heap buffer over-read in ldap_utf8prev() via str2simple filter parsing
Jun 09, 2026
CVSS 5.0
EPSS 0.00
CVE-2026-11786 LOW
389-ds-base: 389-ds-base: heap out-of-bounds read in ldif parser str2entry_state_information_from_type()
Jun 09, 2026
CVSS 1.9
EPSS 0.00
CVE-2026-11785 MEDIUM
389 Directory Server SSO Token Handler - Authenticated Information Disclosure
Jun 09, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-52902 MEDIUM
Awxkit: path traversal via yaml !include directive
Jun 09, 2026
CVSS 4.7
EPSS 0.00
CVE-2026-11611 MEDIUM
389-ds-base: 389-ds-base: content sync plugin unbounded queue growth and race conditions
Jun 08, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-11569 MEDIUM
Quay: quay: stored xss via filedrop svg upload
Jun 08, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-3238 HIGH
Samba: denial of service against ad dc wins server
Jun 08, 2026
CVSS 7.5
EPSS 0.03
CVE-2026-50264 HIGH
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: out-of-bounds heap write in dri2 drigetbuffers/drigetbufferswithformat
Jun 05, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-50263 MEDIUM
Xorg-x11-server: xorg-x11-server-xwayland: xorg-x11-server: use-after-free information disclosure in createsaverwindow()
Jun 05, 2026
CVSS 5.5
EPSS 0.00
Products
Red Hat Enterprise Linux 9 539 Red Hat Enterprise Linux 8 537 Red Hat Enterprise Linux 10 455 Red Hat Enterprise Linux 7 448 Red Hat Enterprise Linux 6 408 Red Hat OpenShift Container Platform 4 209 Red Hat In-Vehicle Operating System 1 195 Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support 136 Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support 127 Red Hat Enterprise Linux 9.4 Extended Update Support 116 Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions 100 Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions 95 Red Hat Hardened Images 95 Red Hat Enterprise Linux 7 Extended Lifecycle Support 94 Red Hat Enterprise Linux 8.6 Telecommunications Update Service 93 Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions 93 Red Hat Enterprise Linux 8.8 Telecommunications Update Service 92 Red Hat Enterprise Linux 8.2 Advanced Update Support 89 Red Hat Build of Keycloak 87 Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On 83 Red Hat Enterprise Linux 9.6 Extended Update Support 70 Red Hat Enterprise Linux 10.0 Extended Update Support 68 Red Hat Enterprise Linux 9.2 Extended Update Support 67 Red Hat build of Keycloak 26.4 64 Red Hat Enterprise Linux 8.8 Extended Update Support 60 Red Hat JBoss Enterprise Application Platform 8 58 Red Hat JBoss Enterprise Application Platform Expansion Pack 58 Red Hat Single Sign-On 7 53 Red Hat Enterprise Linux 8.6 Extended Update Support Long-Life Add-On 45