[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2014-9728":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":69,"duplicate_of":9,"upstream":70,"downstream":71,"duplicates":92,"related":93,"reserved_at":9,"published_at":99,"modified_at":100,"state":101,"summary":102,"references_raw":111,"kevs":180,"epss":181,"epss_history":184,"metrics":441,"affected":446},"CVE-2014-9728","The UDF filesystem implementation in the Linux kernel before 3.18.2 does not validate certain lengths, which allows local users to cause a denial of service (buffer over-read and system crash) via a crafted filesystem image, related to fs/udf/inode.c and fs/udf/symlink.c.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[],[],[],[72,74,76,78,80,82,84,86,88,90],{"_key":73},"SUSE-SU-2015:1592-1",{"_key":75},"SUSE-SU-2015:1224-1",{"_key":77},"SUSE-SU-2015:1324-1",{"_key":79},"SUSE-SU-2015:1611-1",{"_key":81},"SUSE-SU-2015:1678-1",{"_key":83},"USN-2517-1",{"_key":85},"DLA-246-1",{"_key":87},"USN-2544-1",{"_key":89},"DEBIAN-CVE-2014-9728",{"_key":91},"UBUNTU-CVE-2014-9728",[],[94,95,96,97,98],{"_key":73},{"_key":75},{"_key":77},{"_key":79},{"_key":81},"2015-08-31T10:00:00.000Z","2024-08-06T13:55:03.931Z","Modified",{"cisa_kev":103,"cisa_ransomware":103,"cisa_vendor":9,"epss_severity":104,"epss_score":105,"severity":106,"severity_score":107,"severity_version":108,"severity_source":109,"severity_vector":110,"severity_status":101},false,"low",0.00041,"medium",4.9,"v2.0","nvd","AV:L/AC:L/Au:N/C:N/I:N/A:C",[112,118,122,128,132,138,142,146,150,156,160,164,168,172,176],{"url":113,"sources":114,"tags":116},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=a1d47b262952a45aae62bd49cfaf33dd76c11a2c",[115,109],"cve.org",[117],"X Refsource CONFIRM",{"url":119,"sources":120,"tags":121},"https://github.com/torvalds/linux/commit/a1d47b262952a45aae62bd49cfaf33dd76c11a2c",[115,109],[117],{"url":123,"sources":124,"tags":125},"http://www.openwall.com/lists/oss-security/2015/06/02/7",[115,109],[126,127],"Mailing List","X Refsource MLIST",{"url":129,"sources":130,"tags":131},"https://github.com/torvalds/linux/commit/e237ec37ec154564f8690c5bd1795339955eeef9",[115,109],[117],{"url":133,"sources":134,"tags":135},"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00021.html",[115,109],[136,137],"Vendor Advisory","X Refsource SUSE",{"url":139,"sources":140,"tags":141},"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00049.html",[115,109],[136,137],{"url":143,"sources":144,"tags":145},"https://github.com/torvalds/linux/commit/e159332b9af4b04d882dbcfe1bb0117f0a6d4b58",[115,109],[117],{"url":147,"sources":148,"tags":149},"https://bugzilla.redhat.com/show_bug.cgi?id=1228229",[115,109],[117],{"url":151,"sources":152,"tags":153},"http://www.securityfocus.com/bid/74964",[115,109],[154,155],"VDB Entry","X Refsource BID",{"url":157,"sources":158,"tags":159},"http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00011.html",[115,109],[136,137],{"url":161,"sources":162,"tags":163},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e159332b9af4b04d882dbcfe1bb0117f0a6d4b58",[115,109],[117],{"url":165,"sources":166,"tags":167},"http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e237ec37ec154564f8690c5bd1795339955eeef9",[115,109],[117],{"url":169,"sources":170,"tags":171},"http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.2",[115,109],[117,136],{"url":173,"sources":174,"tags":175},"http://lists.opensuse.org/opensuse-security-announce/2015-07/msg00023.html",[115,109],[136,137],{"url":177,"sources":178,"tags":179},"http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00018.html",[115,109],[136,137],[],{"date":182,"score":105,"percentile":183},"2026-06-03",0.12666,[185,188,191,194,197,200,203,206,209,212,215,218,221,223,226,229,232,235,238,241,244,247,250,253,255,258,261,264,267,270,273,275,278,280,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,327,330,333,336,339,342,345,348,351,353,356,358,361,364,367,370,373,376,378,381,384,387,389,392,395,398,401,404,407,410,413,415,418,421,423,425,428,431,434,437,439],{"date":186,"score":105,"percentile":187},"2025-11-04",0.11986,{"date":189,"score":105,"percentile":190},"2025-11-05",0.12012,{"date":192,"score":105,"percentile":193},"2025-11-06",0.12118,{"date":195,"score":105,"percentile":196},"2025-11-07",0.12138,{"date":198,"score":105,"percentile":199},"2025-11-08",0.12139,{"date":201,"score":105,"percentile":202},"2025-11-09",0.12117,{"date":204,"score":105,"percentile":205},"2025-11-10",0.12057,{"date":207,"score":105,"percentile":208},"2025-11-11",0.12073,{"date":210,"score":105,"percentile":211},"2025-11-12",0.12101,{"date":213,"score":105,"percentile":214},"2025-11-13",0.12119,{"date":216,"score":105,"percentile":217},"2025-11-14",0.12134,{"date":219,"score":105,"percentile":220},"2025-11-15",0.12126,{"date":222,"score":105,"percentile":193},"2025-11-16",{"date":224,"score":105,"percentile":225},"2025-11-17",0.12097,{"date":227,"score":105,"percentile":228},"2025-11-18",0.07707,{"date":230,"score":105,"percentile":231},"2025-11-19",0.0772,{"date":233,"score":105,"percentile":234},"2025-11-20",0.07753,{"date":236,"score":105,"percentile":237},"2025-11-21",0.12124,{"date":239,"score":105,"percentile":240},"2025-11-22",0.12131,{"date":242,"score":105,"percentile":243},"2025-11-23",0.1212,{"date":245,"score":105,"percentile":246},"2025-11-24",0.12066,{"date":248,"score":105,"percentile":249},"2025-11-25",0.12071,{"date":251,"score":105,"percentile":252},"2025-11-26",0.12065,{"date":254,"score":105,"percentile":249},"2025-11-27",{"date":256,"score":105,"percentile":257},"2025-11-28",0.12062,{"date":259,"score":105,"percentile":260},"2025-11-29",0.12016,{"date":262,"score":105,"percentile":263},"2025-11-30",0.12017,{"date":265,"score":105,"percentile":266},"2025-12-01",0.1206,{"date":268,"score":105,"percentile":269},"2025-12-02",0.1207,{"date":271,"score":105,"percentile":272},"2025-12-03",0.12079,{"date":274,"score":105,"percentile":252},"2025-12-04",{"date":276,"score":105,"percentile":277},"2025-12-05",0.12111,{"date":279,"score":105,"percentile":220},"2025-12-06",{"date":281,"score":105,"percentile":193},"2025-12-07",{"date":283,"score":105,"percentile":284},"2025-12-08",0.12123,{"date":286,"score":105,"percentile":287},"2025-12-09",0.12179,{"date":289,"score":105,"percentile":290},"2025-12-10",0.12245,{"date":292,"score":105,"percentile":293},"2025-12-11",0.12267,{"date":295,"score":105,"percentile":296},"2025-12-12",0.12308,{"date":298,"score":105,"percentile":299},"2025-12-13",0.12327,{"date":301,"score":105,"percentile":302},"2025-12-14",0.12311,{"date":304,"score":105,"percentile":305},"2025-12-15",0.12265,{"date":307,"score":105,"percentile":308},"2025-12-16",0.12248,{"date":310,"score":105,"percentile":311},"2025-12-17",0.12335,{"date":313,"score":105,"percentile":314},"2025-12-18",0.12381,{"date":316,"score":105,"percentile":317},"2025-12-19",0.12391,{"date":319,"score":105,"percentile":320},"2025-12-20",0.12392,{"date":322,"score":105,"percentile":323},"2025-12-21",0.12371,{"date":325,"score":105,"percentile":326},"2025-12-22",0.12341,{"date":328,"score":105,"percentile":329},"2025-12-23",0.12342,{"date":331,"score":105,"percentile":332},"2025-12-24",0.12351,{"date":334,"score":105,"percentile":335},"2025-12-25",0.12425,{"date":337,"score":105,"percentile":338},"2025-12-26",0.12404,{"date":340,"score":105,"percentile":341},"2025-12-27",0.1241,{"date":343,"score":105,"percentile":344},"2025-12-28",0.12396,{"date":346,"score":105,"percentile":347},"2025-12-29",0.12322,{"date":349,"score":105,"percentile":350},"2025-12-30",0.12296,{"date":352,"score":105,"percentile":326},"2025-12-31",{"date":354,"score":105,"percentile":355},"2026-01-01",0.12372,{"date":357,"score":105,"percentile":332},"2026-01-02",{"date":359,"score":105,"percentile":360},"2026-01-03",0.12318,{"date":362,"score":105,"percentile":363},"2026-01-04",0.12246,{"date":365,"score":105,"percentile":366},"2026-01-05",0.12195,{"date":368,"score":105,"percentile":369},"2026-01-06",0.1221,{"date":371,"score":105,"percentile":372},"2026-01-07",0.12243,{"date":374,"score":105,"percentile":375},"2026-01-08",0.12286,{"date":377,"score":105,"percentile":296},"2026-01-09",{"date":379,"score":105,"percentile":380},"2026-01-10",0.12331,{"date":382,"score":105,"percentile":383},"2026-01-11",0.12301,{"date":385,"score":105,"percentile":386},"2026-01-12",0.12271,{"date":388,"score":105,"percentile":308},"2026-01-13",{"date":390,"score":105,"percentile":391},"2026-01-14",0.12313,{"date":393,"score":105,"percentile":394},"2026-01-15",0.12315,{"date":396,"score":105,"percentile":397},"2026-01-16",0.12361,{"date":399,"score":105,"percentile":400},"2026-01-17",0.12373,{"date":402,"score":105,"percentile":403},"2026-01-18",0.12321,{"date":405,"score":105,"percentile":406},"2026-01-19",0.12268,{"date":408,"score":105,"percentile":409},"2026-01-20",0.12251,{"date":411,"score":105,"percentile":412},"2026-01-21",0.12228,{"date":414,"score":105,"percentile":369},"2026-01-22",{"date":416,"score":105,"percentile":417},"2026-01-23",0.12295,{"date":419,"score":105,"percentile":420},"2026-01-24",0.1235,{"date":422,"score":105,"percentile":383},"2026-01-25",{"date":424,"score":105,"percentile":290},"2026-01-26",{"date":426,"score":105,"percentile":427},"2026-01-27",0.12235,{"date":429,"score":105,"percentile":430},"2026-01-28",0.1222,{"date":432,"score":105,"percentile":433},"2026-01-29",0.12197,{"date":435,"score":105,"percentile":436},"2026-01-30",0.12212,{"date":438,"score":105,"percentile":412},"2026-01-31",{"date":440,"score":105,"percentile":412},"2026-02-01",[442],{"source":109,"cvss_v2_0":443,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":107,"baseSeverity":9,"vectorString":110,"impactScore":444,"exploitabilityScore":445},6.9,3.9,[447],{"ecosystem":9,"name":448,"vendor":449,"product":450,"cpe_part":451,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":452},"linux kernel","linux","linux_kernel","o",[453],{"version":454,"is_range":455,"range_type":456,"version_start":9,"version_start_type":9,"version_end":457,"version_end_type":458,"fixed_in":9},"lte3.18.1",true,"cpe","3.18.1","including"]