Red hat enterprise linux 9.4 extended update support

This hub aggregates every CVE we track for Red hat enterprise linux 9.4 extended update support, a product in the operating systems space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Red hat enterprise linux 9.4 extended update support.

• CVE-2026-4802Cockpit: cockpit: arbitrary command execution via crafted links in system logs ui8.0May 11, 2026
• CVE-2026-34002Xorg: xwayland: x.org x server: information disclosure or denial of service via out-of-bounds read in xkb modifier map handling6.1May 5, 2026
• CVE-2026-34000Xwayland: xorg: x.org x server: information disclosure and denial of service via out-of-bounds read in xkb geometry processing.6.1May 5, 2026
• CVE-2026-34003Xorg: xwayland: x.org x server: information exposure and denial of service via out-of-bounds memory access7.8Apr 23, 2026
• CVE-2026-34001Xorg: xwayland: x.org x server: use-after-free vulnerability leads to server crash and potential memory corruption7.8Apr 23, 2026
• CVE-2026-33999Xorg: xwayland: x.org x server: denial of service via integer underflow in xkb compatibility map handling7.8Apr 23, 2026
• CVE-2026-4878Libcap: libcap: privilege escalation via toctou race condition in cap_set_file()6.7Apr 9, 2026
• CVE-2026-35092Corosync: corosync: denial of service via integer overflow in join message validation7.5Apr 1, 2026
• CVE-2026-35091Corosync: corosync: denial of service and information disclosure via crafted udp packet8.2Apr 1, 2026
• CVE-2026-5201Gdk-pixbuf: gdk-pixbuf: denial of service via heap-based buffer overflow when processing a specially crafted jpeg image7.5Mar 31, 2026
• CVE-2026-5121Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing7.5Mar 30, 2026
• CVE-2026-4775Libtiff: libtiff: arbitrary code execution or denial of service via signed integer overflow in tiff file processing7.8Mar 24, 2026
• CVE-2026-4424Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing7.5Mar 19, 2026
• CVE-2026-4111Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive7.5Mar 13, 2026
• CVE-2025-12801Nfs-utils: rpc.mountd in the nfs-utils privilege escalation6.5Mar 4, 2026