From 311b7f5693e09ffa21d25690a4daf77f2f4e88a1 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Mon, 30 Mar 2020 17:01:14 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2017/12xxx/CVE-2017-12110.json | 5 +++ 2017/12xxx/CVE-2017-12111.json | 5 +++ 2017/2xxx/CVE-2017-2896.json | 5 +++ 2017/2xxx/CVE-2017-2897.json | 5 +++ 2017/2xxx/CVE-2017-2919.json | 5 +++ 2018/10xxx/CVE-2018-10001.json | 5 +++ 2018/20xxx/CVE-2018-20450.json | 5 +++ 2018/20xxx/CVE-2018-20452.json | 5 +++ 2018/6xxx/CVE-2018-6912.json | 5 +++ 2018/7xxx/CVE-2018-7557.json | 5 +++ 2018/7xxx/CVE-2018-7751.json | 5 +++ 2018/9xxx/CVE-2018-9841.json | 5 +++ 2019/12xxx/CVE-2019-12290.json | 5 +++ 2019/12xxx/CVE-2019-12730.json | 5 +++ 2019/13xxx/CVE-2019-13164.json | 5 +++ 2019/13xxx/CVE-2019-13312.json | 5 +++ 2019/13xxx/CVE-2019-13390.json | 5 +++ 2019/17xxx/CVE-2019-17539.json | 5 +++ 2019/17xxx/CVE-2019-17542.json | 5 +++ 2019/18xxx/CVE-2019-18224.json | 5 +++ 2019/7xxx/CVE-2019-7755.json | 58 ++++++++++++++++++++++++++++++++-- 2020/8xxx/CVE-2020-8608.json | 5 +++ 2020/9xxx/CVE-2020-9366.json | 5 +++ 23 files changed, 166 insertions(+), 2 deletions(-) diff --git a/2017/12xxx/CVE-2017-12110.json b/2017/12xxx/CVE-2017-12110.json index 1a113dd7e72..41108735afa 100644 --- a/2017/12xxx/CVE-2017-12110.json +++ b/2017/12xxx/CVE-2017-12110.json @@ -62,6 +62,11 @@ "name": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462", "refsource": "MISC", "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0462" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2017/12xxx/CVE-2017-12111.json b/2017/12xxx/CVE-2017-12111.json index db8878eb4e1..27f04faceb3 100644 --- a/2017/12xxx/CVE-2017-12111.json +++ b/2017/12xxx/CVE-2017-12111.json @@ -62,6 +62,11 @@ "name": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0463", "refsource": "MISC", "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0463" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2017/2xxx/CVE-2017-2896.json b/2017/2xxx/CVE-2017-2896.json index 2dd9109831c..08d1ad3e3c6 100644 --- a/2017/2xxx/CVE-2017-2896.json +++ b/2017/2xxx/CVE-2017-2896.json @@ -62,6 +62,11 @@ "name": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0403", "refsource": "MISC", "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0403" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2017/2xxx/CVE-2017-2897.json b/2017/2xxx/CVE-2017-2897.json index bd9b78da85d..44ecdb674a4 100644 --- a/2017/2xxx/CVE-2017-2897.json +++ b/2017/2xxx/CVE-2017-2897.json @@ -62,6 +62,11 @@ "name": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0404", "refsource": "MISC", "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0404" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2017/2xxx/CVE-2017-2919.json b/2017/2xxx/CVE-2017-2919.json index 1bd9dd328d8..071e326b4cc 100644 --- a/2017/2xxx/CVE-2017-2919.json +++ b/2017/2xxx/CVE-2017-2919.json @@ -62,6 +62,11 @@ "name": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0426", "refsource": "MISC", "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0426" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2018/10xxx/CVE-2018-10001.json b/2018/10xxx/CVE-2018-10001.json index d98bebd1fe2..dd3cf1d4443 100644 --- a/2018/10xxx/CVE-2018-10001.json +++ b/2018/10xxx/CVE-2018-10001.json @@ -66,6 +66,11 @@ "name": "103732", "refsource": "BID", "url": "http://www.securityfocus.com/bid/103732" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2018/20xxx/CVE-2018-20450.json b/2018/20xxx/CVE-2018-20450.json index 8912506c1b4..e2be806b3a4 100644 --- a/2018/20xxx/CVE-2018-20450.json +++ b/2018/20xxx/CVE-2018-20450.json @@ -56,6 +56,11 @@ "name": "https://github.com/evanmiller/libxls/issues/34", "refsource": "MISC", "url": "https://github.com/evanmiller/libxls/issues/34" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2018/20xxx/CVE-2018-20452.json b/2018/20xxx/CVE-2018-20452.json index 5b838d47a35..90fa800819e 100644 --- a/2018/20xxx/CVE-2018-20452.json +++ b/2018/20xxx/CVE-2018-20452.json @@ -56,6 +56,11 @@ "name": "https://github.com/evanmiller/libxls/issues/35", "refsource": "MISC", "url": "https://github.com/evanmiller/libxls/issues/35" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-64", + "url": "https://security.gentoo.org/glsa/202003-64" } ] } diff --git a/2018/6xxx/CVE-2018-6912.json b/2018/6xxx/CVE-2018-6912.json index 0890381c0a4..d7418b3f2de 100644 --- a/2018/6xxx/CVE-2018-6912.json +++ b/2018/6xxx/CVE-2018-6912.json @@ -56,6 +56,11 @@ "name": "https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/76cc0f0f673353cd4746cd3b83838ae335e5d9ed", "refsource": "CONFIRM", "url": "https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/76cc0f0f673353cd4746cd3b83838ae335e5d9ed" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2018/7xxx/CVE-2018-7557.json b/2018/7xxx/CVE-2018-7557.json index a916f370137..d82fb54491a 100644 --- a/2018/7xxx/CVE-2018-7557.json +++ b/2018/7xxx/CVE-2018-7557.json @@ -66,6 +66,11 @@ "name": "[debian-lts-announce] 20190107 [SECURITY] [DLA 1630-1] libav security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00006.html" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2018/7xxx/CVE-2018-7751.json b/2018/7xxx/CVE-2018-7751.json index 0e2c67cd7a8..2e5fe8ef1a8 100644 --- a/2018/7xxx/CVE-2018-7751.json +++ b/2018/7xxx/CVE-2018-7751.json @@ -61,6 +61,11 @@ "name": "https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/a6cba062051f345e8ebfdff34aba071ed73d923f", "refsource": "CONFIRM", "url": "https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/a6cba062051f345e8ebfdff34aba071ed73d923f" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2018/9xxx/CVE-2018-9841.json b/2018/9xxx/CVE-2018-9841.json index 652e9c0dc90..7700d667d2e 100644 --- a/2018/9xxx/CVE-2018-9841.json +++ b/2018/9xxx/CVE-2018-9841.json @@ -56,6 +56,11 @@ "name": "http://git.videolan.org/?p=ffmpeg.git;a=commit;h=35eeff30caf34df835206f1c12bcf4b7c2bd6758", "refsource": "MISC", "url": "http://git.videolan.org/?p=ffmpeg.git;a=commit;h=35eeff30caf34df835206f1c12bcf4b7c2bd6758" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2019/12xxx/CVE-2019-12290.json b/2019/12xxx/CVE-2019-12290.json index ff1c7e87242..e2d2f40f6c3 100644 --- a/2019/12xxx/CVE-2019-12290.json +++ b/2019/12xxx/CVE-2019-12290.json @@ -106,6 +106,11 @@ "refsource": "FEDORA", "name": "FEDORA-2019-160303ebeb", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ONG3GJRRJO35COPGVJXXSZLU4J5Y42AT/" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-63", + "url": "https://security.gentoo.org/glsa/202003-63" } ] } diff --git a/2019/12xxx/CVE-2019-12730.json b/2019/12xxx/CVE-2019-12730.json index 0b9edb215c6..ed0ee4c9b6b 100644 --- a/2019/12xxx/CVE-2019-12730.json +++ b/2019/12xxx/CVE-2019-12730.json @@ -86,6 +86,11 @@ "refsource": "DEBIAN", "name": "DSA-4502", "url": "https://www.debian.org/security/2019/dsa-4502" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2019/13xxx/CVE-2019-13164.json b/2019/13xxx/CVE-2019-13164.json index 7a4c7f68ba7..61570641588 100644 --- a/2019/13xxx/CVE-2019-13164.json +++ b/2019/13xxx/CVE-2019-13164.json @@ -116,6 +116,11 @@ "refsource": "UBUNTU", "name": "USN-4191-1", "url": "https://usn.ubuntu.com/4191-1/" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-66", + "url": "https://security.gentoo.org/glsa/202003-66" } ] } diff --git a/2019/13xxx/CVE-2019-13312.json b/2019/13xxx/CVE-2019-13312.json index 6e9adb2387f..0d54aba40d0 100644 --- a/2019/13xxx/CVE-2019-13312.json +++ b/2019/13xxx/CVE-2019-13312.json @@ -56,6 +56,11 @@ "url": "https://trac.ffmpeg.org/ticket/7980", "refsource": "MISC", "name": "https://trac.ffmpeg.org/ticket/7980" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2019/13xxx/CVE-2019-13390.json b/2019/13xxx/CVE-2019-13390.json index 7a0126a61da..bd25a224fd3 100644 --- a/2019/13xxx/CVE-2019-13390.json +++ b/2019/13xxx/CVE-2019-13390.json @@ -61,6 +61,11 @@ "refsource": "BID", "name": "109090", "url": "http://www.securityfocus.com/bid/109090" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2019/17xxx/CVE-2019-17539.json b/2019/17xxx/CVE-2019-17539.json index 602cf00cf96..3eb722dc92c 100644 --- a/2019/17xxx/CVE-2019-17539.json +++ b/2019/17xxx/CVE-2019-17539.json @@ -61,6 +61,11 @@ "url": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15733", "refsource": "MISC", "name": "https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15733" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2019/17xxx/CVE-2019-17542.json b/2019/17xxx/CVE-2019-17542.json index c06622e7d97..efbe89cfdae 100644 --- a/2019/17xxx/CVE-2019-17542.json +++ b/2019/17xxx/CVE-2019-17542.json @@ -66,6 +66,11 @@ "refsource": "MLIST", "name": "[debian-lts-announce] 20191205 [SECURITY] [DLA 2021-1] libav security update", "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00003.html" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-65", + "url": "https://security.gentoo.org/glsa/202003-65" } ] } diff --git a/2019/18xxx/CVE-2019-18224.json b/2019/18xxx/CVE-2019-18224.json index 9c24b9921c9..b51fea96ecc 100644 --- a/2019/18xxx/CVE-2019-18224.json +++ b/2019/18xxx/CVE-2019-18224.json @@ -101,6 +101,11 @@ "refsource": "BUGTRAQ", "name": "20200203 [SECURITY] [DSA 4613-1] libidn2 security update", "url": "https://seclists.org/bugtraq/2020/Feb/4" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-63", + "url": "https://security.gentoo.org/glsa/202003-63" } ] } diff --git a/2019/7xxx/CVE-2019-7755.json b/2019/7xxx/CVE-2019-7755.json index c754843ff5d..f4d836d487e 100644 --- a/2019/7xxx/CVE-2019-7755.json +++ b/2019/7xxx/CVE-2019-7755.json @@ -2,7 +2,30 @@ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-7755", - "STATE": "RESERVED" + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,7 +34,38 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "In webERP 4.15, the Import Bank Transactions function fails to sanitize the content of imported MT940 bank statement files, resulting in the execution of arbitrary SQL queries, aka SQL Injection." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://www.exploit-db.com/exploits/46431/", + "refsource": "MISC", + "name": "https://www.exploit-db.com/exploits/46431/" + }, + { + "url": "https://www.weberp.org", + "refsource": "MISC", + "name": "https://www.weberp.org" + }, + { + "refsource": "MISC", + "name": "https://www.exploit-database.net/?id=101060", + "url": "https://www.exploit-database.net/?id=101060" } ] } diff --git a/2020/8xxx/CVE-2020-8608.json b/2020/8xxx/CVE-2020-8608.json index 0d24604c7f0..6b85c69e454 100644 --- a/2020/8xxx/CVE-2020-8608.json +++ b/2020/8xxx/CVE-2020-8608.json @@ -81,6 +81,11 @@ "refsource": "MLIST", "name": "[debian-lts-announce] 20200316 [SECURITY] [DLA 2144-1] qemu security update", "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00017.html" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-66", + "url": "https://security.gentoo.org/glsa/202003-66" } ] } diff --git a/2020/9xxx/CVE-2020-9366.json b/2020/9xxx/CVE-2020-9366.json index 8955d9bf22a..ad397267fcd 100644 --- a/2020/9xxx/CVE-2020-9366.json +++ b/2020/9xxx/CVE-2020-9366.json @@ -66,6 +66,11 @@ "refsource": "MLIST", "name": "[oss-security] 20200225 Re: Re: GNU screen \"out of bounds access when setting w_xtermosc after OSC 49\"", "url": "http://www.openwall.com/lists/oss-security/2020/02/25/1" + }, + { + "refsource": "GENTOO", + "name": "GLSA-202003-62", + "url": "https://security.gentoo.org/glsa/202003-62" } ] }