{"url":"http://public2.vulnerablecode.io/api/packages/128138?format=json","purl":"pkg:rpm/redhat/kernel@2.6.9-89.0.20?arch=EL","type":"rpm","namespace":"redhat","name":"kernel","version":"2.6.9-89.0.20","qualifiers":{"arch":"EL"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/88044?format=json","vulnerability_id":"VCID-7xqe-cvcu-cqeu","summary":"kernel: megaraid_sas permissions in sysfs","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3889.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3889.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3889","reference_id":"","reference_type":"","scores":[{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25653","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25723","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25765","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25534","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25607","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25654","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25665","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25624","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25567","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25571","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25557","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25529","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.2548","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25472","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00091","scoring_system":"epss","scoring_elements":"0.25424","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3889"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=526068","reference_id":"526068","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=526068"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1635","reference_id":"RHSA-2009:1635","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1635"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0046","reference_id":"RHSA-2010:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0076","reference_id":"RHSA-2010:0076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0076"},{"reference_url":"https://usn.ubuntu.com/864-1/","reference_id":"USN-864-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/864-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3889"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-7xqe-cvcu-cqeu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87986?format=json","vulnerability_id":"VCID-djq9-mejy-b7ah","summary":"kernel: gdth: Prevent negative offsets in ioctl","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3080.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3080.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3080","reference_id":"","reference_type":"","scores":[{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21533","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21704","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21761","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21509","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21586","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21645","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21656","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21618","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21561","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21559","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21566","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21536","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21389","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21387","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0007","scoring_system":"epss","scoring_elements":"0.21372","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3080"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=539414","reference_id":"539414","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=539414"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0041","reference_id":"RHSA-2010:0041","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0041"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0046","reference_id":"RHSA-2010:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0076","reference_id":"RHSA-2010:0076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0076"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0882","reference_id":"RHSA-2010:0882","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0882"},{"reference_url":"https://usn.ubuntu.com/864-1/","reference_id":"USN-864-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/864-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3080"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-djq9-mejy-b7ah"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/88045?format=json","vulnerability_id":"VCID-k6jn-xb74-kyex","summary":"kernel: megaraid_sas permissions in sysfs","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3939.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3939.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3939","reference_id":"","reference_type":"","scores":[{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13432","published_at":"2026-04-01T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13532","published_at":"2026-04-02T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13594","published_at":"2026-04-04T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.1339","published_at":"2026-04-07T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13472","published_at":"2026-04-08T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13521","published_at":"2026-04-09T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13494","published_at":"2026-04-11T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13458","published_at":"2026-04-12T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13411","published_at":"2026-04-13T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13317","published_at":"2026-04-16T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13318","published_at":"2026-04-18T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13398","published_at":"2026-04-21T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13402","published_at":"2026-04-24T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13376","published_at":"2026-04-26T12:55:00Z"},{"value":"0.00044","scoring_system":"epss","scoring_elements":"0.13272","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-3939"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=526068","reference_id":"526068","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=526068"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:1635","reference_id":"RHSA-2009:1635","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:1635"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0046","reference_id":"RHSA-2010:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0076","reference_id":"RHSA-2010:0076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0076"},{"reference_url":"https://usn.ubuntu.com/864-1/","reference_id":"USN-864-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/864-1/"}],"fixed_packages":[],"aliases":["CVE-2009-3939"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-k6jn-xb74-kyex"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87999?format=json","vulnerability_id":"VCID-vnea-qedb-93fc","summary":"kernel: isdn: hfc_usb: fix read buffer overflow","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4005.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4005.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-4005","reference_id":"","reference_type":"","scores":[{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15693","published_at":"2026-04-01T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15732","published_at":"2026-04-02T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15796","published_at":"2026-04-04T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15602","published_at":"2026-04-07T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15687","published_at":"2026-04-08T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15746","published_at":"2026-04-09T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15713","published_at":"2026-04-11T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15678","published_at":"2026-04-12T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15613","published_at":"2026-04-13T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15539","published_at":"2026-04-16T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15549","published_at":"2026-04-18T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15599","published_at":"2026-04-21T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15642","published_at":"2026-04-24T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.1564","published_at":"2026-04-26T12:55:00Z"},{"value":"0.0005","scoring_system":"epss","scoring_elements":"0.15582","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-4005"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=539435","reference_id":"539435","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=539435"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0076","reference_id":"RHSA-2010:0076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0076"},{"reference_url":"https://usn.ubuntu.com/864-1/","reference_id":"USN-864-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/864-1/"}],"fixed_packages":[],"aliases":["CVE-2009-4005"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vnea-qedb-93fc"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/87968?format=json","vulnerability_id":"VCID-zha6-q3tu-p7cs","summary":"kernel: hfs buffer overflow","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4020.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4020.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-4020","reference_id":"","reference_type":"","scores":[{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88053","published_at":"2026-04-01T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88063","published_at":"2026-04-02T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88076","published_at":"2026-04-04T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88081","published_at":"2026-04-07T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88101","published_at":"2026-04-08T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88107","published_at":"2026-04-09T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88116","published_at":"2026-04-11T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88109","published_at":"2026-04-12T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.8811","published_at":"2026-04-13T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88123","published_at":"2026-04-16T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88121","published_at":"2026-04-21T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88138","published_at":"2026-04-24T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88144","published_at":"2026-04-26T12:55:00Z"},{"value":"0.03814","scoring_system":"epss","scoring_elements":"0.88143","published_at":"2026-04-29T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-4020"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=540736","reference_id":"540736","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=540736"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0046","reference_id":"RHSA-2010:0046","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0046"},{"reference_url":"https://access.redhat.com/errata/RHSA-2010:0076","reference_id":"RHSA-2010:0076","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2010:0076"},{"reference_url":"https://usn.ubuntu.com/894-1/","reference_id":"USN-894-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/894-1/"}],"fixed_packages":[],"aliases":["CVE-2009-4020"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zha6-q3tu-p7cs"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.9-89.0.20%3Farch=EL"}