- Red Hat Customer Portal

Red Hat Product Security strives to provide the most actionable information to help you make appropriate risk-based decisions. There are vulnerabilities that may require more contextual information to help in the decision-making process, so specialized Security Bulletins are created to offer the best experience and information possible. Here you will fix these bulletins which aggregate information, diagnostic tools, and updates in one easy to understand interface. In addition, when new product releases are made available that have security fixes included, these Security Bulletins will highlight those fixes to assist in decisions about upgrading to newer versions.

A full list of all CVEs affecting Red Hat Products can be found in our CVE Database.

Browse Red Hat CVES

Topic	Impact	Status	Public Date
runc - Malicious container escape - CVE-2019-5736	Important	Resolved	Monday, February 11, 2019 - 13:22
Kubernetes privilege escalation and access to sensitive information in OpenShift products and services - CVE-2018-1002105	Critical	Resolved	Monday, December 3, 2018 - 17:00
Mutagen Astronomy - Local privilege escalation - CVE-2018-14634	Important	Resolved	Tuesday, September 25, 2018 - 17:00
L1TF - L1 Terminal Fault Attack - CVE-2018-3620 & CVE-2018-3646	Important	Resolved	Tuesday, August 14, 2018 - 17:00
Kernel Side-Channel Attack using Speculative Store Bypass - CVE-2018-3639	Important	Resolved	Monday, May 21, 2018 - 21:00
DHCP Client Script Code Execution Vulnerability - CVE-2018-1111	Critical	Resolved	Tuesday, May 15, 2018 - 12:00
POP SS debug exception - CVE-2018-8897 [Moderate] & CVE-2018-1087 [Important]	Important	Resolved	Tuesday, May 8, 2018 - 00:00
OpenShift Source-To-Image Vulnerability - CVE-2018-1102	Critical	Resolved	Friday, April 27, 2018 - 00:00
Meltdown & Spectre - Kernel Side-Channel Attacks - CVE-2017-5754 CVE-2017-5753 CVE-2017-5715	Important	Resolved	Wednesday, January 3, 2018 - 22:00
Possible RCE via Heketi server API - CVE-2017-15103	Important	Resolved	Monday, December 18, 2017 - 00:00
"Dirty COW" variant on transparent huge pages - CVE-2017-1000405	Important	Resolved	Thursday, November 30, 2017 - 00:00
KRACKs - wpa_supplicant Multiple Vulnerabilities	Important	Resolved	Monday, October 16, 2017 - 00:00
Solr/Lucene -security bypass to access sensitive data - CVE-2017-12629	Critical	Resolved	Thursday, October 12, 2017 - 00:00
dnsmasq: Multiple Critical and Important vulnerabilities	Critical	Resolved	Monday, October 2, 2017 - 00:00
CVE-2017-1000253 - load_elf_binary does not allocate sufficient space	Important	Resolved	Tuesday, September 26, 2017 - 00:00
Blueborne - Linux Kernel Remote Denial of Service in Bluetooth subsystem - CVE-2017-1000251	Important	Resolved	Tuesday, September 12, 2017 - 00:00
Kernel slab corruption in the inotify subsystem of the linux Linux kernel - CVE-2017-7533	Important	Resolved	Thursday, August 3, 2017 - 00:00
Stack Guard Page Circumvention Affecting Multiple Packages	Important	Resolved	Monday, June 19, 2017 - 00:00
sudo: Privilege escalation via improper get_process_ttyname() parsing	Important	Resolved	Tuesday, May 30, 2017 - 00:00
Samba - Loading shared modules from any path in the system leading to Remote Code Execution. - CVE-2017-7494	Important	Resolved	Wednesday, May 24, 2017 - 00:00

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation

Pages