[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2009-1895":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":36,"related":37,"reserved_at":9,"published_at":38,"modified_at":39,"state":40,"summary":41,"references_raw":50,"kevs":212,"epss":213,"epss_history":216,"metrics":482,"affected":487},"CVE-2009-1895","The personality subsystem in the Linux kernel before 2.6.31-rc3 has a PER_CLEAR_ON_SETID setting that does not clear the ADDR_COMPAT_LAYOUT and MMAP_PAGE_ZERO flags when executing a setuid or setgid program, which makes it easier for local users to leverage the details of memory usage to (1) conduct NULL pointer dereference attacks, (2) bypass the mmap_min_addr protection mechanism, or (3) defeat address space layout randomization (ASLR).",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-16","Configuration","Weaknesses in this category are typically introduced during the configuration of the software.","category","Obsolete",[],[],[],[],[22,24,26,28,30,32,34],{"_key":23},"RHSA-2009:1193",{"_key":25},"RHSA-2009:1438",{"_key":27},"RHSA-2009:1540",{"_key":29},"RHSA-2009:1550",{"_key":31},"RHSA-2010:0079",{"_key":33},"DSA-1844-1",{"_key":35},"DSA-1845-1",[],[],"2009-07-16T15:00:00.000Z","2024-08-07T05:27:54.804Z","Modified",{"cisa_kev":42,"cisa_ransomware":42,"cisa_vendor":9,"epss_severity":43,"epss_score":44,"severity":45,"severity_score":46,"severity_version":47,"severity_source":48,"severity_vector":49,"severity_status":40},false,"low",0.0006,"high",7.2,"v2.0","nvd","AV:L/AC:L/Au:N/C:C/I:C/A:C",[51,60,65,70,76,82,88,92,96,101,106,111,115,119,123,129,134,138,142,147,152,156,160,164,168,172,176,180,184,188,192,196,200,204,208],{"url":52,"sources":53,"tags":55},"http://www.securityfocus.com/archive/1/512019/100/0/threaded",[54,48],"cve.org",[56,57,58,59],"Mailing List","X Refsource BUGTRAQ","Third Party Advisory","VDB Entry",{"url":61,"sources":62,"tags":63},"http://wiki.rpath.com/Advisories:rPSA-2009-0111",[54,48],[64,58],"X Refsource CONFIRM",{"url":66,"sources":67,"tags":68},"http://secunia.com/advisories/36131",[54,48],[58,69],"X Refsource SECUNIA",{"url":71,"sources":72,"tags":73},"http://www.osvdb.org/55807",[54,48],[59,74,75],"X Refsource OSVDB","Broken Link",{"url":77,"sources":78,"tags":79},"http://www.vupen.com/english/advisories/2009/1866",[54,48],[59,80,81,58],"X Refsource VUPEN","Patch",{"url":83,"sources":84,"tags":85},"https://rhn.redhat.com/errata/RHSA-2009-1540.html",[54,48],[86,87,58],"Vendor Advisory","X Refsource REDHAT",{"url":89,"sources":90,"tags":91},"http://secunia.com/advisories/37471",[54,48],[58,69],{"url":93,"sources":94,"tags":95},"http://secunia.com/advisories/36759",[54,48],[58,69],{"url":97,"sources":98,"tags":99},"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00223.html",[54,48],[86,100,58],"X Refsource FEDORA",{"url":102,"sources":103,"tags":104},"http://www.debian.org/security/2009/dsa-1844",[54,48],[86,105,58],"X Refsource DEBIAN",{"url":107,"sources":108,"tags":109},"http://www.ubuntu.com/usn/usn-807-1",[54,48],[86,110,58],"X Refsource UBUNTU",{"url":112,"sources":113,"tags":114},"http://www.vmware.com/security/advisories/VMSA-2009-0016.html",[54,48],[64,58],{"url":116,"sources":117,"tags":118},"http://www.redhat.com/support/errata/RHSA-2009-1193.html",[54,48],[86,87,58],{"url":120,"sources":121,"tags":122},"http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=f9fabcb58a6d26d6efde842d1703ac7cfa9427b6",[54,48],[64],{"url":124,"sources":125,"tags":126},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7826",[54,48],[59,127,128,58],"Signature","X Refsource OVAL",{"url":130,"sources":131,"tags":132},"http://www.securityfocus.com/bid/35647",[54,48],[59,133,58],"X Refsource BID",{"url":135,"sources":136,"tags":137},"https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00166.html",[54,48],[86,100,58],{"url":139,"sources":140,"tags":141},"http://www.securityfocus.com/archive/1/505254/100/0/threaded",[54,48],[56,57,58,59],{"url":143,"sources":144,"tags":145},"http://blog.cr0.org/2009/06/bypassing-linux-null-pointer.html",[54,48],[146,81,58],"X Refsource MISC",{"url":148,"sources":149,"tags":150},"http://www.mandriva.com/security/advisories?name=MDVSA-2011:051",[54,48],[86,151,58],"X Refsource MANDRIVA",{"url":153,"sources":154,"tags":155},"http://www.securityfocus.com/archive/1/507985/100/0/threaded",[54,48],[56,57,58,59],{"url":157,"sources":158,"tags":159},"http://secunia.com/advisories/36051",[54,48],[58,69],{"url":161,"sources":162,"tags":163},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11768",[54,48],[59,127,128,58],{"url":165,"sources":166,"tags":167},"http://secunia.com/advisories/36045",[54,48],[58,69],{"url":169,"sources":170,"tags":171},"http://secunia.com/advisories/36116",[54,48],[58,69],{"url":173,"sources":174,"tags":175},"https://rhn.redhat.com/errata/RHSA-2009-1550.html",[54,48],[86,87,58],{"url":177,"sources":178,"tags":179},"http://patchwork.kernel.org/patch/32598/",[54,48],[64,81,86],{"url":181,"sources":182,"tags":183},"http://www.kernel.org/pub/linux/kernel/v2.6/testing/ChangeLog-2.6.31-rc3",[54,48],[64,86],{"url":185,"sources":186,"tags":187},"http://secunia.com/advisories/35801",[54,48],[58,69],{"url":189,"sources":190,"tags":191},"http://secunia.com/advisories/36054",[54,48],[58,69],{"url":193,"sources":194,"tags":195},"https://bugs.launchpad.net/bugs/cve/2009-1895",[54,48],[64,58],{"url":197,"sources":198,"tags":199},"http://www.debian.org/security/2009/dsa-1845",[54,48],[86,105,58],{"url":201,"sources":202,"tags":203},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9453",[54,48],[59,127,128,58],{"url":205,"sources":206,"tags":207},"http://www.redhat.com/support/errata/RHSA-2009-1438.html",[54,48],[86,87,58],{"url":209,"sources":210,"tags":211},"http://www.vupen.com/english/advisories/2009/3316",[54,48],[59,80,58],[],{"date":214,"score":44,"percentile":215},"2026-06-04",0.18971,[217,220,223,226,229,232,235,238,241,244,247,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,327,330,333,336,339,342,345,348,351,354,357,360,363,365,368,371,373,376,379,382,385,388,391,394,397,400,403,406,409,412,415,418,421,424,427,430,433,436,439,442,445,448,451,454,457,460,463,466,469,472,475,478,480],{"date":218,"score":44,"percentile":219},"2025-11-04",0.18803,{"date":221,"score":44,"percentile":222},"2025-11-05",0.18813,{"date":224,"score":44,"percentile":225},"2025-11-06",0.18819,{"date":227,"score":44,"percentile":228},"2025-11-07",0.18836,{"date":230,"score":44,"percentile":231},"2025-11-08",0.18835,{"date":233,"score":44,"percentile":234},"2025-11-09",0.1881,{"date":236,"score":44,"percentile":237},"2025-11-10",0.18769,{"date":239,"score":44,"percentile":240},"2025-11-11",0.18775,{"date":242,"score":44,"percentile":243},"2025-11-12",0.18817,{"date":245,"score":44,"percentile":246},"2025-11-13",0.18846,{"date":248,"score":44,"percentile":249},"2025-11-14",0.18839,{"date":251,"score":44,"percentile":252},"2025-11-15",0.18814,{"date":254,"score":44,"percentile":255},"2025-11-16",0.18771,{"date":257,"score":44,"percentile":258},"2025-11-17",0.18697,{"date":260,"score":44,"percentile":261},"2025-11-18",0.14376,{"date":263,"score":44,"percentile":264},"2025-11-19",0.14393,{"date":266,"score":44,"percentile":267},"2025-11-20",0.14404,{"date":269,"score":44,"percentile":270},"2025-11-21",0.18695,{"date":272,"score":44,"percentile":273},"2025-11-22",0.18699,{"date":275,"score":44,"percentile":276},"2025-11-23",0.18666,{"date":278,"score":44,"percentile":279},"2025-11-24",0.1863,{"date":281,"score":44,"percentile":282},"2025-11-25",0.18617,{"date":284,"score":44,"percentile":285},"2025-11-26",0.18607,{"date":287,"score":44,"percentile":288},"2025-11-27",0.1861,{"date":290,"score":44,"percentile":291},"2025-11-28",0.18594,{"date":293,"score":44,"percentile":294},"2025-11-29",0.18579,{"date":296,"score":44,"percentile":297},"2025-11-30",0.18584,{"date":299,"score":44,"percentile":300},"2025-12-01",0.18624,{"date":302,"score":44,"percentile":303},"2025-12-02",0.18633,{"date":305,"score":44,"percentile":306},"2025-12-03",0.18644,{"date":308,"score":44,"percentile":309},"2025-12-04",0.18606,{"date":311,"score":44,"percentile":312},"2025-12-05",0.18658,{"date":314,"score":44,"percentile":315},"2025-12-06",0.1866,{"date":317,"score":44,"percentile":318},"2025-12-07",0.18648,{"date":320,"score":44,"percentile":321},"2025-12-08",0.18667,{"date":323,"score":44,"percentile":324},"2025-12-09",0.18735,{"date":326,"score":44,"percentile":222},"2025-12-10",{"date":328,"score":44,"percentile":329},"2025-12-11",0.18853,{"date":331,"score":44,"percentile":332},"2025-12-12",0.18887,{"date":334,"score":44,"percentile":335},"2025-12-13",0.18901,{"date":337,"score":44,"percentile":338},"2025-12-14",0.18851,{"date":340,"score":44,"percentile":341},"2025-12-15",0.18832,{"date":343,"score":44,"percentile":344},"2025-12-16",0.18865,{"date":346,"score":44,"percentile":347},"2025-12-17",0.1895,{"date":349,"score":44,"percentile":350},"2025-12-18",0.19031,{"date":352,"score":44,"percentile":353},"2025-12-19",0.19054,{"date":355,"score":44,"percentile":356},"2025-12-20",0.19026,{"date":358,"score":44,"percentile":359},"2025-12-21",0.18984,{"date":361,"score":44,"percentile":362},"2025-12-22",0.18943,{"date":364,"score":44,"percentile":362},"2025-12-23",{"date":366,"score":44,"percentile":367},"2025-12-24",0.18981,{"date":369,"score":44,"percentile":370},"2025-12-25",0.19061,{"date":372,"score":44,"percentile":370},"2025-12-26",{"date":374,"score":44,"percentile":375},"2025-12-27",0.19058,{"date":377,"score":44,"percentile":378},"2025-12-28",0.19017,{"date":380,"score":44,"percentile":381},"2025-12-29",0.18974,{"date":383,"score":44,"percentile":384},"2025-12-30",0.18977,{"date":386,"score":44,"percentile":387},"2025-12-31",0.19039,{"date":389,"score":44,"percentile":390},"2026-01-01",0.19131,{"date":392,"score":44,"percentile":393},"2026-01-02",0.19135,{"date":395,"score":44,"percentile":396},"2026-01-03",0.1911,{"date":398,"score":44,"percentile":399},"2026-01-04",0.19012,{"date":401,"score":44,"percentile":402},"2026-01-05",0.18988,{"date":404,"score":44,"percentile":405},"2026-01-06",0.19005,{"date":407,"score":44,"percentile":408},"2026-01-07",0.19037,{"date":410,"score":44,"percentile":411},"2026-01-08",0.19096,{"date":413,"score":44,"percentile":414},"2026-01-09",0.19098,{"date":416,"score":44,"percentile":417},"2026-01-10",0.19106,{"date":419,"score":44,"percentile":420},"2026-01-11",0.19074,{"date":422,"score":44,"percentile":423},"2026-01-12",0.19035,{"date":425,"score":44,"percentile":426},"2026-01-13",0.1901,{"date":428,"score":44,"percentile":429},"2026-01-14",0.19063,{"date":431,"score":44,"percentile":432},"2026-01-15",0.19069,{"date":434,"score":44,"percentile":435},"2026-01-16",0.19094,{"date":437,"score":44,"percentile":438},"2026-01-17",0.19108,{"date":440,"score":44,"percentile":441},"2026-01-18",0.19043,{"date":443,"score":44,"percentile":444},"2026-01-19",0.18983,{"date":446,"score":44,"percentile":447},"2026-01-20",0.18968,{"date":449,"score":44,"percentile":450},"2026-01-21",0.18936,{"date":452,"score":44,"percentile":453},"2026-01-22",0.18875,{"date":455,"score":44,"percentile":456},"2026-01-23",0.18976,{"date":458,"score":44,"percentile":459},"2026-01-24",0.19004,{"date":461,"score":44,"percentile":462},"2026-01-25",0.18931,{"date":464,"score":44,"percentile":465},"2026-01-26",0.1883,{"date":467,"score":44,"percentile":468},"2026-01-27",0.18821,{"date":470,"score":44,"percentile":471},"2026-01-28",0.18824,{"date":473,"score":44,"percentile":474},"2026-01-29",0.18794,{"date":476,"score":44,"percentile":477},"2026-01-30",0.18808,{"date":479,"score":44,"percentile":222},"2026-01-31",{"date":481,"score":44,"percentile":249},"2026-02-01",[483],{"source":48,"cvss_v2_0":484,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":46,"baseSeverity":9,"vectorString":49,"impactScore":485,"exploitabilityScore":486},10,3.9,[488,503,512],{"ecosystem":9,"name":489,"vendor":490,"product":491,"cpe_part":492,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":493},"ubuntu linux","canonical","ubuntu_linux","o",[494,497,499,501],{"version":495,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.06","cpe",{"version":498,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04",{"version":500,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.10",{"version":502,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"9.04",{"ecosystem":9,"name":504,"vendor":505,"product":506,"cpe_part":492,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":507},"debian linux","debian","debian_linux",[508,510],{"version":509,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"version":511,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.0",{"ecosystem":9,"name":513,"vendor":514,"product":515,"cpe_part":492,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":516},"linux kernel","linux","linux_kernel",[517,522,524],{"version":518,"is_range":519,"range_type":496,"version_start":9,"version_start_type":9,"version_end":520,"version_end_type":521,"fixed_in":9},"lte2.6.31",true,"2.6.31","including",{"version":523,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.31:rc1",{"version":525,"is_range":42,"range_type":496,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.6.31:rc2"]