From 1e0a1bb74ba84ff6055c3326b49d7e3133a16e5b Mon Sep 17 00:00:00 2001 From: CVE Team Date: Thu, 24 Jun 2021 00:00:57 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2011/5xxx/CVE-2011-5034.json | 5 +++ 2021/32xxx/CVE-2021-32823.json | 2 +- 2021/35xxx/CVE-2021-35041.json | 56 ++++++++++++++++++++++++++++++---- 3 files changed, 56 insertions(+), 7 deletions(-) diff --git a/2011/5xxx/CVE-2011-5034.json b/2011/5xxx/CVE-2011-5034.json index a054d362fe3..d3299e4a815 100644 --- a/2011/5xxx/CVE-2011-5034.json +++ b/2011/5xxx/CVE-2011-5034.json @@ -91,6 +91,11 @@ "refsource": "MLIST", "name": "[axis-java-dev] 20210622 [jira] [Created] (AXIS2-6004) AXIS 2 1.7.9 geronimo jars with vulnerability CVE-2011-5034", "url": "https://lists.apache.org/thread.html/r20957aa5962a48328f199e2373f408aeeae601a45dd5275a195e2b6e@%3Cjava-dev.axis.apache.org%3E" + }, + { + "refsource": "MLIST", + "name": "[axis-java-dev] 20210623 [jira] [Resolved] (AXIS2-6004) AXIS 2 1.7.9 geronimo jars with vulnerability CVE-2011-5034", + "url": "https://lists.apache.org/thread.html/r653f633aa7b6ccbb8c338dbfcea7a00e4ae9d6f3e064a03cab8dc20d@%3Cjava-dev.axis.apache.org%3E" } ] } diff --git a/2021/32xxx/CVE-2021-32823.json b/2021/32xxx/CVE-2021-32823.json index a74f5fd6f09..f74c650b6f6 100644 --- a/2021/32xxx/CVE-2021-32823.json +++ b/2021/32xxx/CVE-2021-32823.json @@ -35,7 +35,7 @@ "description_data": [ { "lang": "eng", - "value": "In the bindata RubyGem before version 2.4.10 there is a potential denial-of-service vulnerability. In affected versions it is very slow for certain classes in BinData to be created. For example BinData::Bit100000, BinData::Bit100001, BinData::Bit100002, BinData::Bit. In combination with .constantize there is a potential for a CPU-based DoS. In version 2.4.10 bindata improved the creation time of Bits and Integers.\n\n" + "value": "In the bindata RubyGem before version 2.4.10 there is a potential denial-of-service vulnerability. In affected versions it is very slow for certain classes in BinData to be created. For example BinData::Bit100000, BinData::Bit100001, BinData::Bit100002, BinData::Bit. In combination with .constantize there is a potential for a CPU-based DoS. In version 2.4.10 bindata improved the creation time of Bits and Integers." } ] }, diff --git a/2021/35xxx/CVE-2021-35041.json b/2021/35xxx/CVE-2021-35041.json index 5821c974d69..b5a58641bbe 100644 --- a/2021/35xxx/CVE-2021-35041.json +++ b/2021/35xxx/CVE-2021-35041.json @@ -1,17 +1,61 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { - "ID": "CVE-2021-35041", "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ID": "CVE-2021-35041", + "STATE": "PUBLIC" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The blockchain node in FISCO-BCOS V2.7.2 may have a bug when dealing with unformatted packet and lead to a crash. A malicious node can send a packet continuously. The packet is in an incorrect format and cannot be decoded by the node correctly. As a result, the node may consume the memory sustainably and crash. More details are shown at: https://github.com/FISCO-BCOS/FISCO-BCOS/issues/1951" + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/FISCO-BCOS/FISCO-BCOS/issues/1951", + "refsource": "MISC", + "name": "https://github.com/FISCO-BCOS/FISCO-BCOS/issues/1951" } ] }