Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Red Hat Enterprise Linux 6 — Vulnerabilities & Security Advisories 42

All 42 CVE vulnerabilities found in Red Hat Enterprise Linux 6, with AI-generated Chinese analysis, references, and POCs.

This page aggregates known vulnerabilities associated with the Red Hat Enterprise Linux 6 operating system product from vendor Red Hat. The content here collects security weaknesses spanning various severity levels and classification types, covering advisory data released from the initial launch of the distribution through its end-of-life support period. By consolidating these entries, the page provides a comprehensive historical record of security issues affecting this specific major release. Readers can utilize this resource to track Red Hat’s security advisories as they were issued over time, gaining insight into the vendor’s response patterns and remediation timelines. It also allows for a deeper understanding of specific vulnerability classes that impacted the kernel, system libraries, or user-space applications within this enterprise environment. Furthermore, users can look up the complete vulnerability history of Red Hat Enterprise Linux 6 to assess past risks and compare them against current security postures. This aggregation serves as a reference point for security analysts, system administrators, and researchers seeking to understand the evolution of security flaws in this widely deployed Linux variant. The information is structured to facilitate the identification of persistent issues and the evaluation of patch management effectiveness across the lifecycle of the operating system.

Vendor: Red Hat

CVE IDTitleCVSSSeverityPublished
CVE-2026-59089 Gimp: gimp: denial of service via integer overflow in playstation tim loader CWE-190 5.5 Medium2026-07-06
CVE-2026-58381 Gimp: gimp: double-free in read_layer_block() CWE-415 6.1 Medium2026-07-02
CVE-2026-13601 Yelp: yelp-xsl: overly permissive content security policy in yelp allows host file disclosure from flatpak applications CWE-693 7.1 High2026-06-29
CVE-2026-54231 Abrt: unsanitized systemd journal content written to dump directory files enables content injection CWE-74 5.5 Medium2026-06-13
CVE-2026-54230 Abrt: event handler scripts follow symlinks when writing output files, allowing arbitrary file overwrites CWE-59 7.0 High2026-06-13
CVE-2026-54229 Abrt: chownproblemdir succeeds during active post-create event processing due to inadequate locking CWE-362 7.0 High2026-06-13
CVE-2026-54228 Abrt: toctou race condition in abrt-dbus setelement allows arbitrary file writes to dump directories CWE-367 7.8 High2026-06-13
CVE-2025-66286 Webkitgtk: authorization bypass through webpage::send-request signal handler CWE-639 4.7 Medium2026-04-23
CVE-2026-6384 Gimp: gimp: arbitrary code execution or denial of service via buffer overflow in gif image processing CWE-120 7.3 High2026-04-15
CVE-2026-40919 Gimp: gimp: denial of service via specially crafted seattle filmworks file CWE-787 6.1 Medium2026-04-15
CVE-2026-40918 Gimp: gimp: denial of service via crafted pvr image file CWE-131 5.5 Medium2026-04-15
CVE-2026-40917 Gimp: gimp: application crashes or information disclosure via crafted icns image files CWE-125 5.0 Medium2026-04-15
CVE-2026-40916 Gimp: gimp: denial of service due to stack buffer overflow in tim image loader CWE-787 5.0 Medium2026-04-15
CVE-2026-40915 Gimp: gimp: heap buffer overflow due to integer overflow in fits image loader CWE-190 5.5 Medium2026-04-15
CVE-2026-2272 Gimp: gimp: memory corruption due to integer overflow in ico file handling CWE-190 4.3 Medium2026-03-26
CVE-2026-2271 Gimp: gimp: denial of service via crafted psp image file CWE-190 3.3 Low2026-03-26
CVE-2024-43168 Unbound: heap-buffer-overflow in unbound CWE-122 4.8 Medium2024-08-08
CVE-2024-43167 Unbound: null pointer dereference in unbound CWE-476 2.8 Low2024-08-08
CVE-2024-1013 Unixodbc: out of bounds stack write due to pointer-to-integer types conversion CWE-823 7.8 High2024-03-18
CVE-2023-7216 Cpio: extraction allows symlinks which enables remote command execution CWE-59 5.3 Medium2024-02-05
CVE-2023-39197 Kernel: dccp: conntrack out-of-bounds read in nf_conntrack_dccp_packet() CWE-125 4.0 Medium2024-01-23
CVE-2023-6270 Kernel: aoe: improper reference count leads to use-after-free vulnerability CWE-416 7.0 High2024-01-04
CVE-2023-7042 Kernel: null pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() CWE-476 4.4 Medium2023-12-21
CVE-2023-6277 Libtiff: out-of-memory in tiffopen via a craft file CWE-400 6.5 Medium2023-11-24
CVE-2023-5341 Imagemagick: heap use-after-free in coders/bmp.c CWE-416 6.2 Medium2023-11-19
CVE-2023-3397 Kernel: slab-use-after-free write in txend due to race condition CWE-416 7.0 High2023-11-01
CVE-2023-5568 Samba: heap buffer overflow with freshness tokens in the heimdal kdc CWE-122 5.9 Medium2023-10-24
CVE-2023-3428 Imagemagick: heap-buffer-overflow in coders/tiff.c CWE-122 6.2 Medium2023-10-04
CVE-2023-5156 Glibc: dos due to memory leak in getaddrinfo.c CWE-401 7.5 High2023-09-25
CVE-2023-4385 Kernel: jfs: null pointer dereference in dbfree() CWE-476 5.5 Medium2023-08-16

All 42 known CVE vulnerabilities affecting Red Hat Enterprise Linux 6 with full Chinese analysis, references, and POCs where available.