Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/kernel-alt@4.14.0-115.21.2?arch=el7a

Type rpm

Namespace redhat

Name kernel-alt

Version 4.14.0-115.21.2

Qualifiers

arch	el7a

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-35bs-4m7g-g7fs

vulnerability_id

VCID-35bs-4m7g-g7fs

summary

An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of service (NULL pointer dereference and system crash).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12614.json

reference_id

reference_type

scores

value	4.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12614.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-12614

reference_id

reference_type

scores

value	0.00083
scoring_system	epss
scoring_elements	0.24261
published_at	2026-06-04T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24361
published_at	2026-06-05T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24342
published_at	2026-06-06T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24287
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-12614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12614

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1718176
reference_id	1718176
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1718176

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:4060
reference_id	RHSA-2020:4060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4060

reference_url	https://access.redhat.com/errata/RHSA-2020:4431
reference_id	RHSA-2020:4431
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4431

reference_url	https://usn.ubuntu.com/4095-2/
reference_id	USN-4095-2
reference_type
scores
url	https://usn.ubuntu.com/4095-2/

fixed_packages

aliases

CVE-2019-12614

risk_score

1.9

exploitability

0.5

weighted_severity

3.7

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-35bs-4m7g-g7fs

url

VCID-3m14-2998-mucu

vulnerability_id

VCID-3m14-2998-mucu

summary

An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18595.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18595.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-18595

reference_id

reference_type

scores

value	0.00126
scoring_system	epss
scoring_elements	0.31451
published_at	2026-06-04T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31519
published_at	2026-06-05T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31484
published_at	2026-06-06T12:55:00Z

value	0.00126
scoring_system	epss
scoring_elements	0.31447
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-18595

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18595
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18595

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1758671
reference_id	1758671
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1758671

reference_url	https://access.redhat.com/errata/RHSA-2020:2082
reference_id	RHSA-2020:2082
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2082

reference_url	https://access.redhat.com/errata/RHSA-2020:2085
reference_id	RHSA-2020:2085
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2085

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:2214
reference_id	RHSA-2020:2214
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2214

reference_url	https://access.redhat.com/errata/RHSA-2020:2242
reference_id	RHSA-2020:2242
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2242

reference_url	https://access.redhat.com/errata/RHSA-2020:2277
reference_id	RHSA-2020:2277
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2277

reference_url	https://access.redhat.com/errata/RHSA-2020:2285
reference_id	RHSA-2020:2285
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2285

reference_url	https://access.redhat.com/errata/RHSA-2020:2289
reference_id	RHSA-2020:2289
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2289

reference_url	https://access.redhat.com/errata/RHSA-2020:2522
reference_id	RHSA-2020:2522
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2522

fixed_packages

aliases

CVE-2017-18595

risk_score

3.5

exploitability

0.5

weighted_severity

7.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-3m14-2998-mucu

url

VCID-54cf-b92e-sqej

vulnerability_id

VCID-54cf-b92e-sqej

summary

An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails. This is primarily a local DoS attack vector, but it might result as well in remote DoS if the XFS filesystem is exported for instance via NFS.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15538.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15538.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-15538

reference_id

reference_type

scores

value	0.16428
scoring_system	epss
scoring_elements	0.95002
published_at	2026-06-04T12:55:00Z

value	0.16428
scoring_system	epss
scoring_elements	0.9501
published_at	2026-06-05T12:55:00Z

value	0.16428
scoring_system	epss
scoring_elements	0.95011
published_at	2026-06-06T12:55:00Z

value	0.16428
scoring_system	epss
scoring_elements	0.95014
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-15538

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1746777
reference_id	1746777
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1746777

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://usn.ubuntu.com/4144-1/
reference_id	USN-4144-1
reference_type
scores
url	https://usn.ubuntu.com/4144-1/

reference_url	https://usn.ubuntu.com/4147-1/
reference_id	USN-4147-1
reference_type
scores
url	https://usn.ubuntu.com/4147-1/

fixed_packages

aliases

CVE-2019-15538

risk_score

3.4

exploitability

0.5

weighted_severity

6.8

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-54cf-b92e-sqej

url

VCID-7shg-w7ju-cyfa

vulnerability_id

VCID-7shg-w7ju-cyfa

summary

In the Android kernel in i2c driver there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9454.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9454.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-9454

reference_id

reference_type

scores

value	0.00021
scoring_system	epss
scoring_elements	0.06175
published_at	2026-06-04T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.062
published_at	2026-06-05T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.06189
published_at	2026-06-06T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.06185
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-9454

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9454
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9454

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1818818
reference_id	1818818
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1818818

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:4060
reference_id	RHSA-2020:4060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4060

reference_url	https://access.redhat.com/errata/RHSA-2020:4062
reference_id	RHSA-2020:4062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4062

reference_url	https://access.redhat.com/errata/RHSA-2020:5206
reference_id	RHSA-2020:5206
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5206

reference_url	https://access.redhat.com/errata/RHSA-2020:5430
reference_id	RHSA-2020:5430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5430

reference_url	https://access.redhat.com/errata/RHSA-2020:5656
reference_id	RHSA-2020:5656
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5656

fixed_packages

aliases

CVE-2019-9454

risk_score

3.0

exploitability

0.5

weighted_severity

5.9

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-7shg-w7ju-cyfa

url

VCID-aenj-7gry-j7dw

vulnerability_id

VCID-aenj-7gry-j7dw

summary

An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18551.json

reference_id

reference_type

scores

value	6.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18551.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-18551

reference_id

reference_type

scores

value	0.0013
scoring_system	epss
scoring_elements	0.31955
published_at	2026-06-04T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.32028
published_at	2026-06-05T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.31998
published_at	2026-06-06T12:55:00Z

value	0.0013
scoring_system	epss
scoring_elements	0.3196
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-18551

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18551
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18551

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1757368
reference_id	1757368
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1757368

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:4060
reference_id	RHSA-2020:4060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4060

reference_url	https://access.redhat.com/errata/RHSA-2020:4062
reference_id	RHSA-2020:4062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4062

reference_url	https://access.redhat.com/errata/RHSA-2020:5206
reference_id	RHSA-2020:5206
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5206

reference_url	https://access.redhat.com/errata/RHSA-2020:5430
reference_id	RHSA-2020:5430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5430

reference_url	https://access.redhat.com/errata/RHSA-2020:5656
reference_id	RHSA-2020:5656
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5656

fixed_packages

aliases

CVE-2017-18551

risk_score

3.0

exploitability

0.5

weighted_severity

6.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-aenj-7gry-j7dw

url

VCID-dr82-k8t7-cfdp

vulnerability_id

VCID-dr82-k8t7-cfdp

summary

In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19524.json

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19524.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19524

reference_id

reference_type

scores

value	0.00042
scoring_system	epss
scoring_elements	0.13011
published_at	2026-06-04T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13092
published_at	2026-06-05T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13095
published_at	2026-06-06T12:55:00Z

value	0.00042
scoring_system	epss
scoring_elements	0.13056
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19524

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19524
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19524

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1783459
reference_id	1783459
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1783459

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:4060
reference_id	RHSA-2020:4060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4060

reference_url	https://access.redhat.com/errata/RHSA-2020:4062
reference_id	RHSA-2020:4062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4062

reference_url	https://access.redhat.com/errata/RHSA-2020:4431
reference_id	RHSA-2020:4431
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4431

reference_url	https://access.redhat.com/errata/RHSA-2020:4609
reference_id	RHSA-2020:4609
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4609

reference_url	https://usn.ubuntu.com/4225-1/
reference_id	USN-4225-1
reference_type
scores
url	https://usn.ubuntu.com/4225-1/

reference_url	https://usn.ubuntu.com/4225-2/
reference_id	USN-4225-2
reference_type
scores
url	https://usn.ubuntu.com/4225-2/

reference_url	https://usn.ubuntu.com/4227-1/
reference_id	USN-4227-1
reference_type
scores
url	https://usn.ubuntu.com/4227-1/

reference_url	https://usn.ubuntu.com/4227-2/
reference_id	USN-4227-2
reference_type
scores
url	https://usn.ubuntu.com/4227-2/

reference_url	https://usn.ubuntu.com/4228-1/
reference_id	USN-4228-1
reference_type
scores
url	https://usn.ubuntu.com/4228-1/

reference_url	https://usn.ubuntu.com/4228-2/
reference_id	USN-4228-2
reference_type
scores
url	https://usn.ubuntu.com/4228-2/

fixed_packages

aliases

CVE-2019-19524

risk_score

2.0

exploitability

0.5

weighted_severity

4.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-dr82-k8t7-cfdp

url

VCID-m268-czps-6fhh

vulnerability_id

VCID-m268-czps-6fhh

summary

In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19447.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19447.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19447

reference_id

reference_type

scores

value	0.01689
scoring_system	epss
scoring_elements	0.82568
published_at	2026-06-04T12:55:00Z

value	0.01689
scoring_system	epss
scoring_elements	0.82596
published_at	2026-06-05T12:55:00Z

value	0.01689
scoring_system	epss
scoring_elements	0.82595
published_at	2026-06-06T12:55:00Z

value	0.01689
scoring_system	epss
scoring_elements	0.82593
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19447

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19447
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19447

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1781679
reference_id	1781679
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1781679

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:4060
reference_id	RHSA-2020:4060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4060

reference_url	https://access.redhat.com/errata/RHSA-2020:4062
reference_id	RHSA-2020:4062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4062

reference_url	https://access.redhat.com/errata/RHSA-2020:4431
reference_id	RHSA-2020:4431
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4431

reference_url	https://access.redhat.com/errata/RHSA-2020:4609
reference_id	RHSA-2020:4609
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4609

reference_url	https://access.redhat.com/errata/RHSA-2020:5206
reference_id	RHSA-2020:5206
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5206

reference_url	https://access.redhat.com/errata/RHSA-2020:5430
reference_id	RHSA-2020:5430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5430

reference_url	https://access.redhat.com/errata/RHSA-2020:5656
reference_id	RHSA-2020:5656
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5656

fixed_packages

aliases

CVE-2019-19447

risk_score

3.5

exploitability

0.5

weighted_severity

7.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-m268-czps-6fhh

url

VCID-myvk-9nyn-t3b5

vulnerability_id

VCID-myvk-9nyn-t3b5

summary

A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option (CIPSO) protocol's category bitmap into the SELinux extensible bitmap via the' ebitmap_netlbl_import' routine. While processing the CIPSO restricted bitmap tag in the 'cipso_v4_parsetag_rbm' routine, it sets the security attribute to indicate that the category bitmap is present, even if it has not been allocated. This issue leads to a NULL pointer dereference issue while importing the same category bitmap into SELinux. This flaw allows a remote network user to crash the system kernel, resulting in a denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10711.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10711.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-10711

reference_id

reference_type

scores

value	0.05438
scoring_system	epss
scoring_elements	0.90336
published_at	2026-06-04T12:55:00Z

value	0.05438
scoring_system	epss
scoring_elements	0.90351
published_at	2026-06-05T12:55:00Z

value	0.05438
scoring_system	epss
scoring_elements	0.9035
published_at	2026-06-06T12:55:00Z

value	0.05438
scoring_system	epss
scoring_elements	0.90347
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-10711

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3016
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3016

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12768
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12768

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1825116
reference_id	1825116
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1825116

reference_url	https://access.redhat.com/errata/RHSA-2020:2082
reference_id	RHSA-2020:2082
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2082

reference_url	https://access.redhat.com/errata/RHSA-2020:2085
reference_id	RHSA-2020:2085
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2085

reference_url	https://access.redhat.com/errata/RHSA-2020:2102
reference_id	RHSA-2020:2102
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2102

reference_url	https://access.redhat.com/errata/RHSA-2020:2103
reference_id	RHSA-2020:2103
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2103

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:2125
reference_id	RHSA-2020:2125
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2125

reference_url	https://access.redhat.com/errata/RHSA-2020:2171
reference_id	RHSA-2020:2171
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2171

reference_url	https://access.redhat.com/errata/RHSA-2020:2199
reference_id	RHSA-2020:2199
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2199

reference_url	https://access.redhat.com/errata/RHSA-2020:2203
reference_id	RHSA-2020:2203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2203

reference_url	https://access.redhat.com/errata/RHSA-2020:2214
reference_id	RHSA-2020:2214
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2214

reference_url	https://access.redhat.com/errata/RHSA-2020:2242
reference_id	RHSA-2020:2242
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2242

reference_url	https://access.redhat.com/errata/RHSA-2020:2277
reference_id	RHSA-2020:2277
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2277

reference_url	https://access.redhat.com/errata/RHSA-2020:2285
reference_id	RHSA-2020:2285
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2285

reference_url	https://access.redhat.com/errata/RHSA-2020:2289
reference_id	RHSA-2020:2289
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2289

reference_url	https://access.redhat.com/errata/RHSA-2020:2291
reference_id	RHSA-2020:2291
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2291

reference_url	https://access.redhat.com/errata/RHSA-2020:2429
reference_id	RHSA-2020:2429
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2429

reference_url	https://access.redhat.com/errata/RHSA-2020:2519
reference_id	RHSA-2020:2519
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2519

reference_url	https://access.redhat.com/errata/RHSA-2020:2522
reference_id	RHSA-2020:2522
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2522

reference_url	https://usn.ubuntu.com/4411-1/
reference_id	USN-4411-1
reference_type
scores
url	https://usn.ubuntu.com/4411-1/

reference_url	https://usn.ubuntu.com/4412-1/
reference_id	USN-4412-1
reference_type
scores
url	https://usn.ubuntu.com/4412-1/

reference_url	https://usn.ubuntu.com/4413-1/
reference_id	USN-4413-1
reference_type
scores
url	https://usn.ubuntu.com/4413-1/

reference_url	https://usn.ubuntu.com/4414-1/
reference_id	USN-4414-1
reference_type
scores
url	https://usn.ubuntu.com/4414-1/

reference_url	https://usn.ubuntu.com/4419-1/
reference_id	USN-4419-1
reference_type
scores
url	https://usn.ubuntu.com/4419-1/

fixed_packages

aliases

CVE-2020-10711

risk_score

2.6

exploitability

0.5

weighted_severity

5.3

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-myvk-9nyn-t3b5

url

VCID-ptxv-utqu-3ydh

vulnerability_id

VCID-ptxv-utqu-3ydh

summary

multiple issues

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-9383.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-9383.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-9383

reference_id

reference_type

scores

value	0.00095
scoring_system	epss
scoring_elements	0.26442
published_at	2026-06-06T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26347
published_at	2026-06-04T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.26399
published_at	2026-06-07T12:55:00Z

value	0.00095
scoring_system	epss
scoring_elements	0.2645
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-9383

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1810685
reference_id	1810685
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1810685

reference_url	https://security.archlinux.org/ASA-202003-6
reference_id	ASA-202003-6
reference_type
scores
url	https://security.archlinux.org/ASA-202003-6

reference_url

https://security.archlinux.org/AVG-1108

reference_id

AVG-1108

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1108

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:4060
reference_id	RHSA-2020:4060
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4060

reference_url	https://access.redhat.com/errata/RHSA-2020:4062
reference_id	RHSA-2020:4062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4062

reference_url	https://usn.ubuntu.com/4342-1/
reference_id	USN-4342-1
reference_type
scores
url	https://usn.ubuntu.com/4342-1/

reference_url	https://usn.ubuntu.com/4344-1/
reference_id	USN-4344-1
reference_type
scores
url	https://usn.ubuntu.com/4344-1/

reference_url	https://usn.ubuntu.com/4345-1/
reference_id	USN-4345-1
reference_type
scores
url	https://usn.ubuntu.com/4345-1/

reference_url	https://usn.ubuntu.com/4346-1/
reference_id	USN-4346-1
reference_type
scores
url	https://usn.ubuntu.com/4346-1/

fixed_packages

aliases

CVE-2020-9383

risk_score

4.0

exploitability

0.5

weighted_severity

8.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-ptxv-utqu-3ydh

url

VCID-szk5-qnyb-gqa8

vulnerability_id

VCID-szk5-qnyb-gqa8

summary

In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19768.json

reference_id

reference_type

scores

value	6.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19768.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-19768

reference_id

reference_type

scores

value	0.01401
scoring_system	epss
scoring_elements	0.80765
published_at	2026-06-04T12:55:00Z

value	0.01401
scoring_system	epss
scoring_elements	0.80793
published_at	2026-06-05T12:55:00Z

value	0.01401
scoring_system	epss
scoring_elements	0.80795
published_at	2026-06-06T12:55:00Z

value	0.01401
scoring_system	epss
scoring_elements	0.80791
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-19768

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19319

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19462

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19768

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20806

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-2182

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5108

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-0543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10711

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10732

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10751

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10757

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10942

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11494

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11608

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11609

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11668

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12114

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12464

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12652

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12654

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12770

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13143

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-2732

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8428

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8647

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8648

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8649

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-9383

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1786164
reference_id	1786164
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1786164

reference_url	https://access.redhat.com/errata/RHSA-2020:1567
reference_id	RHSA-2020:1567
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1567

reference_url	https://access.redhat.com/errata/RHSA-2020:1769
reference_id	RHSA-2020:1769
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1769

reference_url	https://access.redhat.com/errata/RHSA-2020:1966
reference_id	RHSA-2020:1966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:1966

reference_url	https://access.redhat.com/errata/RHSA-2020:2082
reference_id	RHSA-2020:2082
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2082

reference_url	https://access.redhat.com/errata/RHSA-2020:2085
reference_id	RHSA-2020:2085
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2085

reference_url	https://access.redhat.com/errata/RHSA-2020:2104
reference_id	RHSA-2020:2104
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2104

reference_url	https://access.redhat.com/errata/RHSA-2020:2199
reference_id	RHSA-2020:2199
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2199

reference_url	https://access.redhat.com/errata/RHSA-2020:2203
reference_id	RHSA-2020:2203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2203

reference_url	https://access.redhat.com/errata/RHSA-2020:2214
reference_id	RHSA-2020:2214
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2214

reference_url	https://access.redhat.com/errata/RHSA-2020:2242
reference_id	RHSA-2020:2242
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2242

reference_url	https://access.redhat.com/errata/RHSA-2020:2277
reference_id	RHSA-2020:2277
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2277

reference_url	https://access.redhat.com/errata/RHSA-2020:2285
reference_id	RHSA-2020:2285
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2285

reference_url	https://access.redhat.com/errata/RHSA-2020:2289
reference_id	RHSA-2020:2289
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2289

reference_url	https://access.redhat.com/errata/RHSA-2020:2291
reference_id	RHSA-2020:2291
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2291

reference_url	https://access.redhat.com/errata/RHSA-2020:2519
reference_id	RHSA-2020:2519
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2519

reference_url	https://access.redhat.com/errata/RHSA-2020:2522
reference_id	RHSA-2020:2522
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:2522

reference_url	https://usn.ubuntu.com/4342-1/
reference_id	USN-4342-1
reference_type
scores
url	https://usn.ubuntu.com/4342-1/

reference_url	https://usn.ubuntu.com/4344-1/
reference_id	USN-4344-1
reference_type
scores
url	https://usn.ubuntu.com/4344-1/

reference_url	https://usn.ubuntu.com/4345-1/
reference_id	USN-4345-1
reference_type
scores
url	https://usn.ubuntu.com/4345-1/

reference_url	https://usn.ubuntu.com/4346-1/
reference_id	USN-4346-1
reference_type
scores
url	https://usn.ubuntu.com/4346-1/

fixed_packages

aliases

CVE-2019-19768

risk_score

3.0

exploitability

0.5

weighted_severity

6.0

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-szk5-qnyb-gqa8

Fixing_vulnerabilities

Risk_score 4.0

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-alt@4.14.0-115.21.2%3Farch=el7a

Package Instance