Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/140840?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/140840?format=api", "purl": "pkg:rpm/redhat/kernel-alt@4.14.0-115.21.2?arch=el7a", "type": "rpm", "namespace": "redhat", "name": "kernel-alt", "version": "4.14.0-115.21.2", "qualifiers": { "arch": "el7a" }, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79770?format=api", "vulnerability_id": "VCID-35bs-4m7g-g7fs", "summary": "An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12614.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12614.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12614", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24261", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00083", "scoring_system": "epss", "scoring_elements": "0.24361", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12614" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12614", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12614" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1718176", "reference_id": "1718176", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1718176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4060", "reference_id": "RHSA-2020:4060", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4431", "reference_id": "RHSA-2020:4431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4431" }, { "reference_url": "https://usn.ubuntu.com/4095-2/", "reference_id": "USN-4095-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4095-2/" } ], "fixed_packages": [], "aliases": [ "CVE-2019-12614" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-35bs-4m7g-g7fs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79386?format=api", "vulnerability_id": "VCID-3m14-2998-mucu", "summary": "An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.31451", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00126", "scoring_system": "epss", "scoring_elements": "0.31519", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18595" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758671", "reference_id": "1758671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2082", "reference_id": "RHSA-2020:2082", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2082" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2085", "reference_id": "RHSA-2020:2085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2214", "reference_id": "RHSA-2020:2214", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2214" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2242", "reference_id": "RHSA-2020:2242", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2242" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2277", "reference_id": "RHSA-2020:2277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2285", "reference_id": "RHSA-2020:2285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2289", "reference_id": "RHSA-2020:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2522", "reference_id": "RHSA-2020:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2522" } ], "fixed_packages": [], "aliases": [ "CVE-2017-18595" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3m14-2998-mucu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79875?format=api", "vulnerability_id": "VCID-54cf-b92e-sqej", "summary": "An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15538.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15538.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15538", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16428", "scoring_system": "epss", "scoring_elements": "0.95002", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.16428", "scoring_system": "epss", "scoring_elements": "0.9501", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15538" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15538", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15538" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746777", "reference_id": "1746777", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1746777" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://usn.ubuntu.com/4144-1/", "reference_id": "USN-4144-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4144-1/" }, { "reference_url": "https://usn.ubuntu.com/4147-1/", "reference_id": "USN-4147-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4147-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2019-15538" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-54cf-b92e-sqej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80266?format=api", "vulnerability_id": "VCID-7shg-w7ju-cyfa", "summary": "In the Android kernel in i2c driver there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9454.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9454.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9454", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.06175", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.062", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9454" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9454" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1818818", "reference_id": "1818818", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1818818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4060", "reference_id": "RHSA-2020:4060", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4062", "reference_id": "RHSA-2020:4062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5206", "reference_id": "RHSA-2020:5206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5430", "reference_id": "RHSA-2020:5430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5656", "reference_id": "RHSA-2020:5656", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5656" } ], "fixed_packages": [], "aliases": [ "CVE-2019-9454" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7shg-w7ju-cyfa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79384?format=api", "vulnerability_id": "VCID-aenj-7gry-j7dw", "summary": "An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18551.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18551.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18551", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.31955", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32028", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18551" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757368", "reference_id": "1757368", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1757368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4060", "reference_id": "RHSA-2020:4060", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4062", "reference_id": "RHSA-2020:4062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5206", "reference_id": "RHSA-2020:5206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5430", "reference_id": "RHSA-2020:5430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5656", "reference_id": "RHSA-2020:5656", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5656" } ], "fixed_packages": [], "aliases": [ "CVE-2017-18551" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-aenj-7gry-j7dw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80095?format=api", "vulnerability_id": "VCID-dr82-k8t7-cfdp", "summary": "In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19524.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19524.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19524", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13011", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13092", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19524" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1783459", "reference_id": "1783459", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1783459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4060", "reference_id": "RHSA-2020:4060", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4062", "reference_id": "RHSA-2020:4062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4431", "reference_id": "RHSA-2020:4431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4609", "reference_id": "RHSA-2020:4609", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4609" }, { "reference_url": "https://usn.ubuntu.com/4225-1/", "reference_id": "USN-4225-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4225-1/" }, { "reference_url": "https://usn.ubuntu.com/4225-2/", "reference_id": "USN-4225-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4225-2/" }, { "reference_url": "https://usn.ubuntu.com/4227-1/", "reference_id": "USN-4227-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4227-1/" }, { "reference_url": "https://usn.ubuntu.com/4227-2/", "reference_id": "USN-4227-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4227-2/" }, { "reference_url": "https://usn.ubuntu.com/4228-1/", "reference_id": "USN-4228-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4228-1/" }, { "reference_url": "https://usn.ubuntu.com/4228-2/", "reference_id": "USN-4228-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4228-2/" } ], "fixed_packages": [], "aliases": [ "CVE-2019-19524" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dr82-k8t7-cfdp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80088?format=api", "vulnerability_id": "VCID-m268-czps-6fhh", "summary": "In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19447.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01689", "scoring_system": "epss", "scoring_elements": "0.82568", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01689", "scoring_system": "epss", "scoring_elements": "0.82596", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19447" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1781679", "reference_id": "1781679", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1781679" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4060", "reference_id": "RHSA-2020:4060", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4062", "reference_id": "RHSA-2020:4062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4431", "reference_id": "RHSA-2020:4431", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4609", "reference_id": "RHSA-2020:4609", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4609" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5206", "reference_id": "RHSA-2020:5206", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5206" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5430", "reference_id": "RHSA-2020:5430", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5430" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5656", "reference_id": "RHSA-2020:5656", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5656" } ], "fixed_packages": [], "aliases": [ "CVE-2019-19447" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-m268-czps-6fhh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80321?format=api", "vulnerability_id": "VCID-myvk-9nyn-t3b5", "summary": "A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05438", "scoring_system": "epss", "scoring_elements": "0.90336", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.05438", "scoring_system": "epss", "scoring_elements": "0.90351", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12768", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825116", "reference_id": "1825116", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1825116" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2082", "reference_id": "RHSA-2020:2082", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2082" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2085", "reference_id": "RHSA-2020:2085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2102", "reference_id": "RHSA-2020:2102", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2102" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2103", "reference_id": "RHSA-2020:2103", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2103" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2125", "reference_id": "RHSA-2020:2125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2171", "reference_id": "RHSA-2020:2171", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2171" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2199", "reference_id": "RHSA-2020:2199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2199" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2203", "reference_id": "RHSA-2020:2203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2214", "reference_id": "RHSA-2020:2214", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2214" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2242", "reference_id": "RHSA-2020:2242", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2242" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2277", "reference_id": "RHSA-2020:2277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2285", "reference_id": "RHSA-2020:2285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2289", "reference_id": "RHSA-2020:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2291", "reference_id": "RHSA-2020:2291", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2291" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2429", "reference_id": "RHSA-2020:2429", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2429" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2519", "reference_id": "RHSA-2020:2519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2522", "reference_id": "RHSA-2020:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2522" }, { "reference_url": "https://usn.ubuntu.com/4411-1/", "reference_id": "USN-4411-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4411-1/" }, { "reference_url": "https://usn.ubuntu.com/4412-1/", "reference_id": "USN-4412-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4412-1/" }, { "reference_url": "https://usn.ubuntu.com/4413-1/", "reference_id": "USN-4413-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4413-1/" }, { "reference_url": "https://usn.ubuntu.com/4414-1/", "reference_id": "USN-4414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4414-1/" }, { "reference_url": "https://usn.ubuntu.com/4419-1/", "reference_id": "USN-4419-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4419-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2020-10711" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-myvk-9nyn-t3b5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5981?format=api", "vulnerability_id": "VCID-ptxv-utqu-3ydh", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-9383.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-9383.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-9383", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.26347", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00095", "scoring_system": "epss", "scoring_elements": "0.2645", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-9383" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810685", "reference_id": "1810685", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810685" }, { "reference_url": "https://security.archlinux.org/ASA-202003-6", "reference_id": "ASA-202003-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202003-6" }, { "reference_url": "https://security.archlinux.org/AVG-1108", "reference_id": "AVG-1108", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1108" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4060", "reference_id": "RHSA-2020:4060", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4060" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4062", "reference_id": "RHSA-2020:4062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4062" }, { "reference_url": "https://usn.ubuntu.com/4342-1/", "reference_id": "USN-4342-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4342-1/" }, { "reference_url": "https://usn.ubuntu.com/4344-1/", "reference_id": "USN-4344-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4344-1/" }, { "reference_url": "https://usn.ubuntu.com/4345-1/", "reference_id": "USN-4345-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4345-1/" }, { "reference_url": "https://usn.ubuntu.com/4346-1/", "reference_id": "USN-4346-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4346-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2020-9383" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ptxv-utqu-3ydh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80133?format=api", "vulnerability_id": "VCID-szk5-qnyb-gqa8", "summary": "In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19768.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19768.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19768", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01401", "scoring_system": "epss", "scoring_elements": "0.80765", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01401", "scoring_system": "epss", "scoring_elements": "0.80793", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-19768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1786164", "reference_id": "1786164", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1786164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1567", "reference_id": "RHSA-2020:1567", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1567" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1769", "reference_id": "RHSA-2020:1769", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1769" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1966", "reference_id": "RHSA-2020:1966", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1966" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2082", "reference_id": "RHSA-2020:2082", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2082" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2085", "reference_id": "RHSA-2020:2085", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2085" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2104", "reference_id": "RHSA-2020:2104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2199", "reference_id": "RHSA-2020:2199", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2199" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2203", "reference_id": "RHSA-2020:2203", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2203" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2214", "reference_id": "RHSA-2020:2214", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2214" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2242", "reference_id": "RHSA-2020:2242", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2242" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2277", "reference_id": "RHSA-2020:2277", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2277" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2285", "reference_id": "RHSA-2020:2285", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2285" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2289", "reference_id": "RHSA-2020:2289", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2291", "reference_id": "RHSA-2020:2291", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2291" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2519", "reference_id": "RHSA-2020:2519", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2519" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2522", "reference_id": "RHSA-2020:2522", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2522" }, { "reference_url": "https://usn.ubuntu.com/4342-1/", "reference_id": "USN-4342-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4342-1/" }, { "reference_url": "https://usn.ubuntu.com/4344-1/", "reference_id": "USN-4344-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4344-1/" }, { "reference_url": "https://usn.ubuntu.com/4345-1/", "reference_id": "USN-4345-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4345-1/" }, { "reference_url": "https://usn.ubuntu.com/4346-1/", "reference_id": "USN-4346-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4346-1/" } ], "fixed_packages": [], "aliases": [ "CVE-2019-19768" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-szk5-qnyb-gqa8" } ], "fixing_vulnerabilities": [], "risk_score": "4.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-alt@4.14.0-115.21.2%3Farch=el7a" }