diff --git a/2015/3xxx/CVE-2015-3209.json b/2015/3xxx/CVE-2015-3209.json index 9c696cbdef3..e42857d06bc 100644 --- a/2015/3xxx/CVE-2015-3209.json +++ b/2015/3xxx/CVE-2015-3209.json @@ -186,6 +186,11 @@ "name": "DSA-3285", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2015/dsa-3285" + }, + { + "refsource": "MISC", + "name": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13", + "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13" } ] } diff --git a/2015/3xxx/CVE-2015-3214.json b/2015/3xxx/CVE-2015-3214.json index 0f1ee85d060..7e5cd2ffe71 100644 --- a/2015/3xxx/CVE-2015-3214.json +++ b/2015/3xxx/CVE-2015-3214.json @@ -131,6 +131,11 @@ "name": "[qemu-devel] 20150617 Re: [PATCH] i8254: fix out-of-bounds memory access in pit_ioport_read()", "refsource": "MLIST", "url": "https://www.mail-archive.com/qemu-devel@nongnu.org/msg304138.html" + }, + { + "refsource": "MISC", + "name": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13", + "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13" } ] } diff --git a/2015/5xxx/CVE-2015-5165.json b/2015/5xxx/CVE-2015-5165.json index 8f4c039d2a9..3e0a402508c 100644 --- a/2015/5xxx/CVE-2015-5165.json +++ b/2015/5xxx/CVE-2015-5165.json @@ -141,6 +141,11 @@ "name": "http://xenbits.xen.org/xsa/advisory-140.html", "refsource": "CONFIRM", "url": "http://xenbits.xen.org/xsa/advisory-140.html" + }, + { + "refsource": "MISC", + "name": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13", + "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13" } ] } diff --git a/2015/5xxx/CVE-2015-5745.json b/2015/5xxx/CVE-2015-5745.json index e40b9d671db..aba1122a6b8 100644 --- a/2015/5xxx/CVE-2015-5745.json +++ b/2015/5xxx/CVE-2015-5745.json @@ -86,6 +86,11 @@ "refsource": "MISC", "name": "https://github.com/qemu/qemu/commit/7882080388be5088e72c425b02223c02e6cb4295", "url": "https://github.com/qemu/qemu/commit/7882080388be5088e72c425b02223c02e6cb4295" + }, + { + "refsource": "MISC", + "name": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13", + "url": "https://www.arista.com/en/support/advisories-notices/security-advisories/1180-security-advisory-13" } ] } diff --git a/2021/22xxx/CVE-2021-22600.json b/2021/22xxx/CVE-2021-22600.json index be34eed0303..81bf05ca38c 100644 --- a/2021/22xxx/CVE-2021-22600.json +++ b/2021/22xxx/CVE-2021-22600.json @@ -1,97 +1,98 @@ { - "CVE_data_meta": { - "ASSIGNER": "security@google.com", - "ID": "CVE-2021-22600", - "STATE": "PUBLIC", - "TITLE": "Double Free in net/packet/af_packet.c leading to priviledge escalation" - }, - "affects": { - "vendor": { - "vendor_data": [ - { - "product": { - "product_data": [ - { - "product_name": "Kernel", - "version": { - "version_data": [ - { - "version_affected": "<", - "version_value": "5.4.168" - }, - { - "version_affected": "<", - "version_value": "5.10.88" - }, - { - "version_affected": "<", - "version_value": "5.15.11" - }, - { - "version_affected": "<", - "version_value": "5.16-rc6" - } - ] - } - } - ] - }, - "vendor_name": "Linux Kernel" - } - ] - } - }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755" - } - ] - }, - "generator": { - "engine": "Vulnogram 0.0.9" - }, - "impact": { - "cvss": { - "attackComplexity": "HIGH", - "attackVector": "LOCAL", - "availabilityImpact": "HIGH", - "baseScore": 6.6, - "baseSeverity": "MEDIUM", - "confidentialityImpact": "LOW", - "integrityImpact": "LOW", - "privilegesRequired": "LOW", - "scope": "CHANGED", - "userInteraction": "REQUIRED", - "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H", - "version": "3.1" - } - }, - "problemtype": { - "problemtype_data": [ - { - "description": [ - { - "lang": "eng", - "value": "CWE-415 Double Free" - } - ] - } - ] - }, - "references": { - "reference_data": [ - { - "refsource": "CONFIRM", - "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=ec6af094ea28f0f2dda1a6a33b14cd57e36a9755" - } - ] - }, - "source": { - "discovery": "EXTERNAL" - } -} + "CVE_data_meta": { + "ASSIGNER": "security@google.com", + "ID": "CVE-2021-22600", + "STATE": "PUBLIC", + "TITLE": "Double Free in net/packet/af_packet.c leading to priviledge escalation" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Kernel", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_value": "5.4.168" + }, + { + "version_affected": "<", + "version_value": "5.10.88" + }, + { + "version_affected": "<", + "version_value": "5.15.11" + }, + { + "version_affected": "<", + "version_value": "5.16-rc6" + } + ] + } + } + ] + }, + "vendor_name": "Linux Kernel" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "A double free bug in packet_set_ring() in net/packet/af_packet.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755" + } + ] + }, + "generator": { + "engine": "Vulnogram 0.0.9" + }, + "impact": { + "cvss": { + "attackComplexity": "HIGH", + "attackVector": "LOCAL", + "availabilityImpact": "HIGH", + "baseScore": 6.6, + "baseSeverity": "MEDIUM", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "privilegesRequired": "LOW", + "scope": "CHANGED", + "userInteraction": "REQUIRED", + "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H", + "version": "3.1" + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-415 Double Free" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "MISC", + "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=ec6af094ea28f0f2dda1a6a33b14cd57e36a9755", + "name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit?id=ec6af094ea28f0f2dda1a6a33b14cd57e36a9755" + } + ] + }, + "source": { + "discovery": "EXTERNAL" + } +} \ No newline at end of file diff --git a/2022/0xxx/CVE-2022-0376.json b/2022/0xxx/CVE-2022-0376.json new file mode 100644 index 00000000000..37e88258051 --- /dev/null +++ b/2022/0xxx/CVE-2022-0376.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2022-0376", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2022/0xxx/CVE-2022-0377.json b/2022/0xxx/CVE-2022-0377.json new file mode 100644 index 00000000000..d2a4b4a19a0 --- /dev/null +++ b/2022/0xxx/CVE-2022-0377.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2022-0377", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file