"-Synchronized-Data."

2025-05-05 18:28:42 +00:00 · 2020-04-15 12:01:29 +00:00 · 2020-04-15 12:01:29 +00:00 · 155ef9ae04
commit 155ef9ae04
parent 3e1e6edd48
7 changed files with 46 additions and 11 deletions
--- a/2020/11xxx/CVE-2020-11612.json
+++ b/2020/11xxx/CVE-2020-11612.json
@ -131,6 +131,36 @@
                "refsource": "MLIST",
                "name": "[zookeeper-notifications] 20200414 [GitHub] [zookeeper] phunt commented on issue #1319: ZOOKEEPER-3794: upgrade netty to address CVE-2020-11612",
                "url": "https://lists.apache.org/thread.html/rd302ddb501fa02c5119120e5fc21df9a1c00e221c490edbe2d7ad365@%3Cnotifications.zookeeper.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[zookeeper-issues] 20200415 [jira] [Resolved] (ZOOKEEPER-3794) upgrade netty to address CVE-2020-11612",
+                "url": "https://lists.apache.org/thread.html/re1ea144e91f03175d661b2d3e97c7d74b912e019613fa90419cf63f4@%3Cissues.zookeeper.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[zookeeper-commits] 20200415 [zookeeper] branch branch-3.6 updated: ZOOKEEPER-3794: upgrade netty to address CVE-2020-11612",
+                "url": "https://lists.apache.org/thread.html/r866288c2ada00ce148b7307cdf869f15f24302b3eb2128af33830997@%3Ccommits.zookeeper.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[zookeeper-commits] 20200415 [zookeeper] branch release-3.6.1 updated: ZOOKEEPER-3794: upgrade netty to address CVE-2020-11612",
+                "url": "https://lists.apache.org/thread.html/rff8859c0d06b1688344b39097f9685c43b461cf2bc41f60f001704e9@%3Ccommits.zookeeper.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[zookeeper-notifications] 20200415 [GitHub] [zookeeper] eolivelli closed pull request #1319: ZOOKEEPER-3794: upgrade netty to address CVE-2020-11612",
+                "url": "https://lists.apache.org/thread.html/r4a7e4e23bd84ac24abf30ab5d5edf989c02b555e1eca6a2f28636692@%3Cnotifications.zookeeper.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[zookeeper-commits] 20200415 [zookeeper] branch branch-3.5 updated: ZOOKEEPER-3794: upgrade netty to address CVE-2020-11612",
+                "url": "https://lists.apache.org/thread.html/r9c30b7fca4baedebcb46d6e0f90071b30cc4a0e074164d50122ec5ec@%3Ccommits.zookeeper.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[zookeeper-commits] 20200415 [zookeeper] branch master updated: ZOOKEEPER-3794: upgrade netty to address CVE-2020-11612",
+                "url": "https://lists.apache.org/thread.html/r281882fdf9ea89aac02fd2f92786693a956aac2ce9840cce87c7df6b@%3Ccommits.zookeeper.apache.org%3E"
            }
        ]
    }
--- a/2020/1xxx/CVE-2020-1878.json
+++ b/2020/1xxx/CVE-2020-1878.json
@ -48,6 +48,11 @@
                "refsource": "MISC",
                "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200311-01-informationleak-en",
                "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200311-01-informationleak-en"
+            },
+            {
+                "refsource": "CONFIRM",
+                "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-dos-en",
+                "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200415-02-dos-en"
            }
        ]
    },
--- a/2020/7xxx/CVE-2020-7259.json
+++ b/2020/7xxx/CVE-2020-7259.json
@ -38,7 +38,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to bypass local security protection via a carefully crafted input file"
+                "value": "Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to bypass local security protection via a carefully crafted input file"
            }
        ]
    },
@ -85,4 +85,4 @@
    "source": {
        "discovery": "INTERNAL"
    }
-}
+}
--- a/2020/7xxx/CVE-2020-7261.json
+++ b/2020/7xxx/CVE-2020-7261.json
@ -4,7 +4,7 @@
        "DATE_PUBLIC": "2020-04-14T00:00:00.000Z",
        "ID": "CVE-2020-7261",
        "STATE": "PUBLIC",
-        "TITLE": " Buffer overwrite in ENS allowed to bypass AMSI protection"
+        "TITLE": "\u202fBuffer overwrite in ENS allowed to bypass AMSI protection"
    },
    "affects": {
        "vendor": {
@ -38,7 +38,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to disable Endpoint Security via a carefully crafted user input.  "
+                "value": "Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to disable Endpoint Security via a carefully crafted user input."
            }
        ]
    },
@ -85,4 +85,4 @@
    "source": {
        "discovery": "INTERNAL"
    }
-}
+}
--- a/2020/7xxx/CVE-2020-7274.json
+++ b/2020/7xxx/CVE-2020-7274.json
@ -44,7 +44,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default it runs with the current user's privileges). "
+                "value": "Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default it runs with the current user's privileges)."
            }
        ]
    },
@ -91,4 +91,4 @@
    "source": {
        "discovery": "EXTERNAL"
    }
-}
+}
--- a/2020/7xxx/CVE-2020-7276.json
+++ b/2020/7xxx/CVE-2020-7276.json
@ -38,7 +38,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Authentication bypass vulnerability in MfeUpgradeTool in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows administrator users to access policy settings via running this tool. "
+                "value": "Authentication bypass vulnerability in MfeUpgradeTool in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows administrator users to access policy settings via running this tool."
            }
        ]
    },
@ -85,4 +85,4 @@
    "source": {
        "discovery": "INTERNAL"
    }
-}
+}
--- a/2020/7xxx/CVE-2020-7277.json
+++ b/2020/7xxx/CVE-2020-7277.json
@ -38,7 +38,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Protection mechanism failure in all processes in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows local users to stop certain McAfee ENS processes, reducing the protection offered. "
+                "value": "Protection mechanism failure in all processes in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows local users to stop certain McAfee ENS processes, reducing the protection offered."
            }
        ]
    },
@ -85,4 +85,4 @@
    "source": {
        "discovery": "INTERNAL"
    }
-}
+}