{"url":"http://public2.vulnerablecode.io/api/packages/364410?format=json","purl":"pkg:rpm/redhat/kernel@2.6.32-279.37.2?arch=el6","type":"rpm","namespace":"redhat","name":"kernel","version":"2.6.32-279.37.2","qualifiers":{"arch":"el6"},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/217922?format=json","vulnerability_id":"VCID-nw8y-pw6a-fybv","summary":"A certain Red Hat patch for the Linux kernel 2.6.32 on Red Hat Enterprise Linux (RHEL) 6 allows local users to cause a denial of service (invalid free operation and system crash) or possibly gain privileges via a sendmsg system call with the IP_RETOPTS option, as demonstrated by hemlock.c.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2012-3552.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2224.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2224.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2224","reference_id":"","reference_type":"","scores":[{"value":"0.00183","scoring_system":"epss","scoring_elements":"0.39852","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2224"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=979936","reference_id":"979936","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=979936"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1166","reference_id":"RHSA-2013:1166","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1166"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1173","reference_id":"RHSA-2013:1173","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1173"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1195","reference_id":"RHSA-2013:1195","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1195"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1450","reference_id":"RHSA-2013:1450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1450"}],"fixed_packages":[],"aliases":["CVE-2013-2224"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nw8y-pw6a-fybv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/202900?format=json","vulnerability_id":"VCID-p1y8-vxt7-sqh8","summary":"Interpretation conflict in drivers/md/dm-snap-persistent.c in the Linux kernel through 3.11.6 allows remote authenticated users to obtain sensitive information or modify data via a crafted mapping to a snapshot block device.","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4299.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4299.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4299","reference_id":"","reference_type":"","scores":[{"value":"0.00804","scoring_system":"epss","scoring_elements":"0.74548","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-4299"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4299","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4299"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1004233","reference_id":"1004233","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1004233"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1436","reference_id":"RHSA-2013:1436","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1436"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1449","reference_id":"RHSA-2013:1449","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1449"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1450","reference_id":"RHSA-2013:1450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1450"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1490","reference_id":"RHSA-2013:1490","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1490"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1519","reference_id":"RHSA-2013:1519","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1519"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1520","reference_id":"RHSA-2013:1520","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1520"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1783","reference_id":"RHSA-2013:1783","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1783"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1860","reference_id":"RHSA-2013:1860","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1860"},{"reference_url":"https://usn.ubuntu.com/2015-1/","reference_id":"USN-2015-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2015-1/"},{"reference_url":"https://usn.ubuntu.com/2016-1/","reference_id":"USN-2016-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2016-1/"},{"reference_url":"https://usn.ubuntu.com/2040-1/","reference_id":"USN-2040-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2040-1/"},{"reference_url":"https://usn.ubuntu.com/2041-1/","reference_id":"USN-2041-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2041-1/"},{"reference_url":"https://usn.ubuntu.com/2042-1/","reference_id":"USN-2042-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2042-1/"},{"reference_url":"https://usn.ubuntu.com/2043-1/","reference_id":"USN-2043-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2043-1/"},{"reference_url":"https://usn.ubuntu.com/2044-1/","reference_id":"USN-2044-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2044-1/"},{"reference_url":"https://usn.ubuntu.com/2045-1/","reference_id":"USN-2045-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2045-1/"},{"reference_url":"https://usn.ubuntu.com/2046-1/","reference_id":"USN-2046-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2046-1/"},{"reference_url":"https://usn.ubuntu.com/2049-1/","reference_id":"USN-2049-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2049-1/"},{"reference_url":"https://usn.ubuntu.com/2050-1/","reference_id":"USN-2050-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2050-1/"},{"reference_url":"https://usn.ubuntu.com/2066-1/","reference_id":"USN-2066-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2066-1/"},{"reference_url":"https://usn.ubuntu.com/2067-1/","reference_id":"USN-2067-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/2067-1/"}],"fixed_packages":[],"aliases":["CVE-2013-4299"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-p1y8-vxt7-sqh8"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/102401?format=json","vulnerability_id":"VCID-pmsm-pzh7-n7dw","summary":"several","references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2852.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2852.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2852","reference_id":"","reference_type":"","scores":[{"value":"0.00285","scoring_system":"epss","scoring_elements":"0.52354","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2013-2852"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1059","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1059"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2148","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2148"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2164","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2164"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2232","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2232"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2234","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2234"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2237","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2237"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2851","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2851"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2852","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2852"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4162","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4162"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4163","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4163"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=969518","reference_id":"969518","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=969518"},{"reference_url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/38559.txt","reference_id":"CVE-2013-2852;OSVDB-94034","reference_type":"exploit","scores":[],"url":"https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/38559.txt"},{"reference_url":"https://www.securityfocus.com/bid/60410/info","reference_id":"CVE-2013-2852;OSVDB-94034","reference_type":"exploit","scores":[],"url":"https://www.securityfocus.com/bid/60410/info"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1051","reference_id":"RHSA-2013:1051","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1051"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1080","reference_id":"RHSA-2013:1080","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1080"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1264","reference_id":"RHSA-2013:1264","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1264"},{"reference_url":"https://access.redhat.com/errata/RHSA-2013:1450","reference_id":"RHSA-2013:1450","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2013:1450"},{"reference_url":"https://usn.ubuntu.com/1899-1/","reference_id":"USN-1899-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1899-1/"},{"reference_url":"https://usn.ubuntu.com/1900-1/","reference_id":"USN-1900-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1900-1/"},{"reference_url":"https://usn.ubuntu.com/1914-1/","reference_id":"USN-1914-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1914-1/"},{"reference_url":"https://usn.ubuntu.com/1915-1/","reference_id":"USN-1915-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1915-1/"},{"reference_url":"https://usn.ubuntu.com/1917-1/","reference_id":"USN-1917-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1917-1/"},{"reference_url":"https://usn.ubuntu.com/1918-1/","reference_id":"USN-1918-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1918-1/"},{"reference_url":"https://usn.ubuntu.com/1919-1/","reference_id":"USN-1919-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1919-1/"},{"reference_url":"https://usn.ubuntu.com/1920-1/","reference_id":"USN-1920-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1920-1/"},{"reference_url":"https://usn.ubuntu.com/1930-1/","reference_id":"USN-1930-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1930-1/"},{"reference_url":"https://usn.ubuntu.com/1936-1/","reference_id":"USN-1936-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/1936-1/"}],"fixed_packages":[],"aliases":["CVE-2013-2852"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pmsm-pzh7-n7dw"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.32-279.37.2%3Farch=el6"}