Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:apk/alpine/linux-lts@5.10.4-r0?arch=ppc64le&distroversion=v3.23&reponame=main

Type apk

Namespace alpine

Name linux-lts

Version 5.10.4-r0

Qualifiers

arch	ppc64le
distroversion	v3.23
reponame	main

Subpath

Is_vulnerable false

Next_non_vulnerable_version 5.15.74-r0

Latest_non_vulnerable_version 6.6.13-r1

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-jgd1-4c8x-xbg3

vulnerability_id VCID-jgd1-4c8x-xbg3

summary An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be able to trigger an OOM in the backend. All systems with a FreeBSD, Linux, or NetBSD (any version) dom0 are vulnerable.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-29568

reference_id

reference_type

scores

value	0.00226
scoring_system	epss
scoring_elements	0.45529
published_at	2026-06-06T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45497
published_at	2026-06-09T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45526
published_at	2026-06-05T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45456
published_at	2026-06-04T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45509
published_at	2026-06-07T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45484
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-29568

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27815
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27815

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27825
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27825

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27830
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27830

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29568
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29568

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29569
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29569

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29660
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29660

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29661
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29661

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36158
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36158

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3347

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202107-30
reference_id	GLSA-202107-30
reference_type
scores
url	https://security.gentoo.org/glsa/202107-30

reference_url	https://usn.ubuntu.com/4748-1/
reference_id	USN-4748-1
reference_type
scores
url	https://usn.ubuntu.com/4748-1/

reference_url	https://usn.ubuntu.com/4749-1/
reference_id	USN-4749-1
reference_type
scores
url	https://usn.ubuntu.com/4749-1/

reference_url	https://usn.ubuntu.com/4750-1/
reference_id	USN-4750-1
reference_type
scores
url	https://usn.ubuntu.com/4750-1/

reference_url	https://usn.ubuntu.com/4751-1/
reference_id	USN-4751-1
reference_type
scores
url	https://usn.ubuntu.com/4751-1/

reference_url	https://xenbits.xen.org/xsa/advisory-349.html
reference_id	XSA-349
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-349.html

fixed_packages

url	pkg:apk/alpine/linux-lts@5.10.4-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/linux-lts@5.10.4-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/linux-lts@5.10.4-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

aliases CVE-2020-29568, XSA-349

risk_score 1.6

exploitability 0.5

weighted_severity 3.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jgd1-4c8x-xbg3

url VCID-jqzv-2cpj-hqfc

vulnerability_id VCID-jqzv-2cpj-hqfc

summary An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly toggles between the states connect and disconnect. As a consequence, the block backend may re-use a pointer after it was freed. A misbehaving guest can trigger a dom0 crash by continuously connecting / disconnecting a block frontend. Privilege escalation and information leaks cannot be ruled out. This only affects systems with a Linux blkback.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-29569

reference_id

reference_type

scores

value	0.00208
scoring_system	epss
scoring_elements	0.43256
published_at	2026-06-06T12:55:00Z

value	0.00208
scoring_system	epss
scoring_elements	0.4321
published_at	2026-06-09T12:55:00Z

value	0.00208
scoring_system	epss
scoring_elements	0.43248
published_at	2026-06-05T12:55:00Z

value	0.00208
scoring_system	epss
scoring_elements	0.43175
published_at	2026-06-04T12:55:00Z

value	0.00208
scoring_system	epss
scoring_elements	0.43235
published_at	2026-06-07T12:55:00Z

value	0.00208
scoring_system	epss
scoring_elements	0.432
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-29569

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27815
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27815

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27825
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27825

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27830
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27830

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29568
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29568

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29569
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29569

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29660
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29660

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29661
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29661

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36158
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36158

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20177
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20177

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3347

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://security.gentoo.org/glsa/202107-30
reference_id	GLSA-202107-30
reference_type
scores
url	https://security.gentoo.org/glsa/202107-30

reference_url	https://usn.ubuntu.com/4749-1/
reference_id	USN-4749-1
reference_type
scores
url	https://usn.ubuntu.com/4749-1/

reference_url	https://usn.ubuntu.com/4750-1/
reference_id	USN-4750-1
reference_type
scores
url	https://usn.ubuntu.com/4750-1/

reference_url	https://usn.ubuntu.com/4751-1/
reference_id	USN-4751-1
reference_type
scores
url	https://usn.ubuntu.com/4751-1/

reference_url	https://usn.ubuntu.com/4876-1/
reference_id	USN-4876-1
reference_type
scores
url	https://usn.ubuntu.com/4876-1/

reference_url	https://xenbits.xen.org/xsa/advisory-350.html
reference_id	XSA-350
reference_type
scores
url	https://xenbits.xen.org/xsa/advisory-350.html

fixed_packages

url	pkg:apk/alpine/linux-lts@5.10.4-r0?arch=ppc64le&distroversion=v3.23&reponame=main
purl	pkg:apk/alpine/linux-lts@5.10.4-r0?arch=ppc64le&distroversion=v3.23&reponame=main
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/linux-lts@5.10.4-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

aliases CVE-2020-29569, XSA-350

risk_score 2.2

exploitability 0.5

weighted_severity 4.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jqzv-2cpj-hqfc

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:apk/alpine/linux-lts@5.10.4-r0%3Farch=ppc64le&distroversion=v3.23&reponame=main

Package Instance