{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/88462?format=json","vulnerability_id":"VCID-e1fa-s8q2-3fbv","summary":"kernel: sit memory leak","aliases":[{"alias":"CVE-2008-2136"}],"fixed_packages":[],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/128910?format=json","purl":"pkg:rpm/redhat/kernel@2.4.9-e?arch=74","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6a1a-z32k-3bec"},{"vulnerability":"VCID-8zkt-6zb3-c3gx"},{"vulnerability":"VCID-9epb-x1za-vyed"},{"vulnerability":"VCID-cf2v-zn7q-b3gd"},{"vulnerability":"VCID-d3j2-c5ey-pqbe"},{"vulnerability":"VCID-d91v-h4jm-bffj"},{"vulnerability":"VCID-dajb-npd8-6bhn"},{"vulnerability":"VCID-dk79-tsxh-jqfa"},{"vulnerability":"VCID-e1fa-s8q2-3fbv"},{"vulnerability":"VCID-hjz4-81cy-w7az"},{"vulnerability":"VCID-mn7v-1n4p-z3f2"},{"vulnerability":"VCID-syk6-6hck-hka9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.4.9-e%3Farch=74"},{"url":"http://public2.vulnerablecode.io/api/packages/128909?format=json","purl":"pkg:rpm/redhat/kernel@2.4.18-e?arch=67","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-6a1a-z32k-3bec"},{"vulnerability":"VCID-8zkt-6zb3-c3gx"},{"vulnerability":"VCID-9epb-x1za-vyed"},{"vulnerability":"VCID-cf2v-zn7q-b3gd"},{"vulnerability":"VCID-d3j2-c5ey-pqbe"},{"vulnerability":"VCID-d91v-h4jm-bffj"},{"vulnerability":"VCID-dajb-npd8-6bhn"},{"vulnerability":"VCID-dk79-tsxh-jqfa"},{"vulnerability":"VCID-e1fa-s8q2-3fbv"},{"vulnerability":"VCID-hjz4-81cy-w7az"},{"vulnerability":"VCID-mn7v-1n4p-z3f2"},{"vulnerability":"VCID-q7rz-jbh9-3qef"},{"vulnerability":"VCID-syk6-6hck-hka9"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.4.18-e%3Farch=67"},{"url":"http://public2.vulnerablecode.io/api/packages/128911?format=json","purl":"pkg:rpm/redhat/kernel@2.4.21-58?arch=EL","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5p3h-bsad-fydk"},{"vulnerability":"VCID-9epb-x1za-vyed"},{"vulnerability":"VCID-cf2v-zn7q-b3gd"},{"vulnerability":"VCID-cgyh-3yan-aycc"},{"vulnerability":"VCID-e1fa-s8q2-3fbv"},{"vulnerability":"VCID-hjz4-81cy-w7az"},{"vulnerability":"VCID-mn7v-1n4p-z3f2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.4.21-58%3Farch=EL"},{"url":"http://public2.vulnerablecode.io/api/packages/129306?format=json","purl":"pkg:rpm/redhat/kernel@2.6.9-67.0.22?arch=EL","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-e1fa-s8q2-3fbv"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.9-67.0.22%3Farch=EL"},{"url":"http://public2.vulnerablecode.io/api/packages/129305?format=json","purl":"pkg:rpm/redhat/kernel@2.6.18-92.1.10?arch=el5","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-5p3h-bsad-fydk"},{"vulnerability":"VCID-8xgj-xe14-zqhq"},{"vulnerability":"VCID-e1fa-s8q2-3fbv"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel@2.6.18-92.1.10%3Farch=el5"},{"url":"http://public2.vulnerablecode.io/api/packages/129251?format=json","purl":"pkg:rpm/redhat/kernel-rt@2.6.24.7-74?arch=el5rt","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-2584-pd5b-9bf4"},{"vulnerability":"VCID-7f3u-q7tk-h7ac"},{"vulnerability":"VCID-czdd-eft9-vyhj"},{"vulnerability":"VCID-e1fa-s8q2-3fbv"},{"vulnerability":"VCID-g392-veug-qygm"},{"vulnerability":"VCID-k8uq-hwcd-2fg8"},{"vulnerability":"VCID-nkbj-56hz-vqfe"},{"vulnerability":"VCID-q32m-2g35-uubv"},{"vulnerability":"VCID-qv5k-g3b6-hfc2"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/kernel-rt@2.6.24.7-74%3Farch=el5rt"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2136.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2136.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2136","reference_id":"","reference_type":"","scores":[{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95938","published_at":"2026-04-01T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95946","published_at":"2026-04-02T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95953","published_at":"2026-04-04T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95958","published_at":"2026-04-07T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95967","published_at":"2026-04-08T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.9597","published_at":"2026-04-09T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95974","published_at":"2026-04-12T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95976","published_at":"2026-04-13T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95986","published_at":"2026-04-16T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95991","published_at":"2026-04-18T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95992","published_at":"2026-04-29T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.95993","published_at":"2026-04-26T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.96002","published_at":"2026-05-05T12:55:00Z"},{"value":"0.23487","scoring_system":"epss","scoring_elements":"0.96006","published_at":"2026-05-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-2136"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=446031","reference_id":"446031","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=446031"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0585","reference_id":"RHSA-2008:0585","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0585"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0607","reference_id":"RHSA-2008:0607","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0607"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0612","reference_id":"RHSA-2008:0612","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0612"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0787","reference_id":"RHSA-2008:0787","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0787"},{"reference_url":"https://access.redhat.com/errata/RHSA-2008:0973","reference_id":"RHSA-2008:0973","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2008:0973"},{"reference_url":"https://access.redhat.com/errata/RHSA-2009:0001","reference_id":"RHSA-2009:0001","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2009:0001"},{"reference_url":"https://usn.ubuntu.com/625-1/","reference_id":"USN-625-1","reference_type":"","scores":[],"url":"https://usn.ubuntu.com/625-1/"}],"weaknesses":[{"cwe_id":401,"name":"Missing Release of Memory after Effective Lifetime","description":"The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory."}],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.2","risk_score":0.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-e1fa-s8q2-3fbv"}