admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-08 03:27:03 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2023-03-27 00:01:18 +00:00
parent 59c5346353
commit 3b20ada860
No known key found for this signature in database
GPG Key ID: E3252B3D49582C98
10 changed files with 519 additions and 661 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

100
2021/25xxx/CVE-2021-25636.json
View File

@ -1,14 +1,38 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@documentfoundation.org",
"ID": "CVE-2021-25636",
"STATE": "PUBLIC",
"TITLE": "Incorrect trust validation of signature with ambiguous KeyInfo children"
"ASSIGNER": "security@documentfoundation.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to create a digitally signed ODF document, by manipulating the documentsignatures.xml or macrosignatures.xml stream within the document to contain both \"X509Data\" and \"KeyValue\" children of the \"KeyInfo\" tag, which when opened caused LibreOffice to verify using the \"KeyValue\" but to report verification with the unrelated \"X509Data\" value. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.5."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-347 Improper Verification of Cryptographic Signature",
"cweId": "CWE-347"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "The Document Foundation",
"product": {
"product_data": [
{
@ -24,64 +48,40 @@
}
}
]
},
"vendor_name": "The Document Foundation"
}
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Thanks to NDS of Ruhr University Bochum for discovering and reporting this problem."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"references": {
"reference_data": [
{
"lang": "eng",
"value": "LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature is valid. An Improper Certificate Validation vulnerability in LibreOffice allowed an attacker to create a digitally signed ODF document, by manipulating the documentsignatures.xml or macrosignatures.xml stream within the document to contain both \"X509Data\" and \"KeyValue\" children of the \"KeyInfo\" tag, which when opened caused LibreOffice to verify using the \"KeyValue\" but to report verification with the unrelated \"X509Data\" value. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.5."
"url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2021-25636/",
"refsource": "MISC",
"name": "https://www.libreoffice.org/about-us/security/advisories/CVE-2021-25636/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NE6UIBCPZWRBWPSEGJOPNWPPT3CCMVH2/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NE6UIBCPZWRBWPSEGJOPNWPPT3CCMVH2/"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html",
"refsource": "MISC",
"name": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-347 Improper Verification of Cryptographic Signature"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2021-25636/",
"name": "https://www.libreoffice.org/about-us/security/advisories/CVE-2021-25636/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2022-3bbe89c20f",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NE6UIBCPZWRBWPSEGJOPNWPPT3CCMVH2/"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20230326 [SECURITY] [DLA 3368-1] libreoffice security update",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
},
"credits": [
{
"lang": "en",
"value": "Thanks to NDS of Ruhr University Bochum for discovering and reporting this problem."
}
]
}

90
2022/23xxx/CVE-2022-23824.json
View File

@ -1,38 +1,12 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "psirt@amd.com",
"DATE_PUBLIC": "2022-11-08T17:00:00.000Z",
"ID": "CVE-2022-23824",
"ASSIGNER": "psirt@amd.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "AMD Processors",
"version": {
"version_data": [
{
"version_affected": "=",
"version_name": "Processor ",
"version_value": "various "
}
]
}
}
]
},
"vendor_name": "AMD"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
@ -41,9 +15,6 @@
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
@ -56,35 +27,62 @@
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "AMD",
"product": {
"product_data": [
{
"product_name": "AMD Processors",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "Processor various "
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1040",
"refsource": "MISC",
"name": "https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1040"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20221110 Xen Security Advisory 422 v2 (CVE-2022-23824) - x86: Multiple speculative security issues",
"url": "http://www.openwall.com/lists/oss-security/2022/11/10/2"
"url": "http://www.openwall.com/lists/oss-security/2022/11/10/2",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2022/11/10/2"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2022-9f51d13fa3",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YTMITQBGC23MSDHUCAPCVGLMVXIBXQTQ/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2022-53a4a5dd11",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NTQMPJC5N6XJYQ232OZFLK47HVZNRBY3/"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NTQMPJC5N6XJYQ232OZFLK47HVZNRBY3/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NTQMPJC5N6XJYQ232OZFLK47HVZNRBY3/"
},
{
"refsource": "DEBIAN",
"name": "DSA-5378",
"url": "https://www.debian.org/security/2023/dsa-5378"
"url": "https://www.debian.org/security/2023/dsa-5378",
"refsource": "MISC",
"name": "https://www.debian.org/security/2023/dsa-5378"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"source": {
"discovery": "EXTERNAL"
}

90
2022/26xxx/CVE-2022-26305.json
View File

@ -1,14 +1,38 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@documentfoundation.org",
"ID": "CVE-2022-26305",
"STATE": "PUBLIC",
"TITLE": "Execution of Untrusted Macros Due to Improper Certificate Validation"
"ASSIGNER": "security@documentfoundation.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "An Improper Certificate Validation vulnerability in LibreOffice existed where determining if a macro was signed by a trusted author was done by only matching the serial number and issuer string of the used certificate with that of a trusted certificate. This is not sufficient to verify that the macro was actually signed with the certificate. An adversary could therefore create an arbitrary certificate with a serial number and an issuer string identical to a trusted certificate which LibreOffice would present as belonging to the trusted author, potentially leading to the user to execute arbitrary code contained in macros improperly trusted. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.1."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-295 Improper Certificate Validation",
"cweId": "CWE-295"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "The Document Foundation",
"product": {
"product_data": [
{
@ -29,59 +53,35 @@
}
}
]
},
"vendor_name": "The Document Foundation"
}
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "OpenSource Security GmbH on behalf of the German Federal Office for Information Security"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"references": {
"reference_data": [
{
"lang": "eng",
"value": "An Improper Certificate Validation vulnerability in LibreOffice existed where determining if a macro was signed by a trusted author was done by only matching the serial number and issuer string of the used certificate with that of a trusted certificate. This is not sufficient to verify that the macro was actually signed with the certificate. An adversary could therefore create an arbitrary certificate with a serial number and an issuer string identical to a trusted certificate which LibreOffice would present as belonging to the trusted author, potentially leading to the user to execute arbitrary code contained in macros improperly trusted. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.1."
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305",
"refsource": "MISC",
"name": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html",
"refsource": "MISC",
"name": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-295 Improper Certificate Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305",
"name": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26305"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20230326 [SECURITY] [DLA 3368-1] libreoffice security update",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
},
"credits": [
{
"lang": "en",
"value": "OpenSource Security GmbH on behalf of the German Federal Office for Information Security"
}
]
}

100
2022/26xxx/CVE-2022-26306.json
View File

@ -1,14 +1,38 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@documentfoundation.org",
"ID": "CVE-2022-26306",
"STATE": "PUBLIC",
"TITLE": "Execution of Untrusted Macros Due to Improper Certificate Validation"
"ASSIGNER": "security@documentfoundation.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "LibreOffice supports the storage of passwords for web connections in the user\u2019s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where the required initialization vector for encryption was always the same which weakens the security of the encryption making them vulnerable if an attacker has access to the user's configuration data. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.1."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-326 Inadequate Encryption Strength",
"cweId": "CWE-326"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "The Document Foundation",
"product": {
"product_data": [
{
@ -29,64 +53,40 @@
}
}
]
},
"vendor_name": "The Document Foundation"
}
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "OpenSource Security GmbH on behalf of the German Federal Office for Information Security"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"references": {
"reference_data": [
{
"lang": "eng",
"value": "LibreOffice supports the storage of passwords for web connections in the user\u2019s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where the required initialization vector for encryption was always the same which weakens the security of the encryption making them vulnerable if an attacker has access to the user's configuration data. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.1."
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26306",
"refsource": "MISC",
"name": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26306"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html",
"refsource": "MISC",
"name": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
},
{
"url": "http://www.openwall.com/lists/oss-security/2022/08/13/1",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2022/08/13/1"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-326 Inadequate Encryption Strength"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26306",
"name": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26306"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220812 CVE-2022-37400: Apache OpenOffice Static Initialization Vector Allows to Recover Passwords for Web Connections Without Knowing the Master Password",
"url": "http://www.openwall.com/lists/oss-security/2022/08/13/1"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20230326 [SECURITY] [DLA 3368-1] libreoffice security update",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
},
"credits": [
{
"lang": "en",
"value": "OpenSource Security GmbH on behalf of the German Federal Office for Information Security"
}
]
}

100
2022/26xxx/CVE-2022-26307.json
View File

@ -1,14 +1,38 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@documentfoundation.org",
"ID": "CVE-2022-26307",
"STATE": "PUBLIC",
"TITLE": "Weak Master Keys"
"ASSIGNER": "security@documentfoundation.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "LibreOffice supports the storage of passwords for web connections in the user\u2019s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where master key was poorly encoded resulting in weakening its entropy from 128 to 43 bits making the stored passwords vulerable to a brute force attack if an attacker has access to the users stored config. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.3."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-326 Inadequate Encryption Strength",
"cweId": "CWE-326"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "The Document Foundation",
"product": {
"product_data": [
{
@ -29,64 +53,40 @@
}
}
]
},
"vendor_name": "The Document Foundation"
}
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "OpenSource Security GmbH on behalf of the German Federal Office for Information Security"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"references": {
"reference_data": [
{
"lang": "eng",
"value": "LibreOffice supports the storage of passwords for web connections in the user\u2019s configuration database. The stored passwords are encrypted with a single master key provided by the user. A flaw in LibreOffice existed where master key was poorly encoded resulting in weakening its entropy from 128 to 43 bits making the stored passwords vulerable to a brute force attack if an attacker has access to the users stored config. This issue affects: The Document Foundation LibreOffice 7.2 versions prior to 7.2.7; 7.3 versions prior to 7.3.3."
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26307",
"refsource": "MISC",
"name": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26307"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html",
"refsource": "MISC",
"name": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
},
{
"url": "http://www.openwall.com/lists/oss-security/2022/08/13/2",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2022/08/13/2"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-326 Inadequate Encryption Strength"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26307",
"name": "https://www.libreoffice.org/about-us/security/advisories/cve-2022-26307"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20220812 CVE-2022-37401: Apache OpenOffice Weak Master Keys",
"url": "http://www.openwall.com/lists/oss-security/2022/08/13/2"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20230326 [SECURITY] [DLA 3368-1] libreoffice security update",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
},
"credits": [
{
"lang": "en",
"value": "OpenSource Security GmbH on behalf of the German Federal Office for Information Security"
}
]
}

120
2022/3xxx/CVE-2022-3140.json
View File

@ -1,14 +1,38 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@documentfoundation.org",
"ID": "CVE-2022-3140",
"STATE": "PUBLIC",
"TITLE": "Macro URL arbitrary script execution"
"ASSIGNER": "security@documentfoundation.org",
"STATE": "PUBLIC"
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice links using that scheme could be constructed to call internal macros with arbitrary arguments. Which when clicked on, or activated by document events, could result in arbitrary script execution without warning. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.1; 7.3 versions prior to 7.3.6."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20 Improper Input Validation",
"cweId": "CWE-20"
}
]
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "The Document Foundation",
"product": {
"product_data": [
{
@ -29,74 +53,50 @@
}
}
]
},
"vendor_name": "The Document Foundation"
}
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "TheSecurityDev working with Trend Micro Zero Day Initiative"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
"references": {
"reference_data": [
{
"lang": "eng",
"value": "LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice links using that scheme could be constructed to call internal macros with arbitrary arguments. Which when clicked on, or activated by document events, could result in arbitrary script execution without warning. This issue affects: The Document Foundation LibreOffice 7.4 versions prior to 7.4.1; 7.3 versions prior to 7.3.6."
"url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2022-3140",
"refsource": "MISC",
"name": "https://www.libreoffice.org/about-us/security/advisories/CVE-2022-3140"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html",
"refsource": "MISC",
"name": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
},
{
"url": "https://www.debian.org/security/2022/dsa-5252",
"refsource": "MISC",
"name": "https://www.debian.org/security/2022/dsa-5252"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/"
},
{
"url": "https://security.gentoo.org/glsa/202212-04",
"refsource": "MISC",
"name": "https://security.gentoo.org/glsa/202212-04"
}
]
},
"generator": {
"engine": "Vulnogram 0.0.9"
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20 Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"url": "https://www.libreoffice.org/about-us/security/advisories/CVE-2022-3140",
"name": "https://www.libreoffice.org/about-us/security/advisories/CVE-2022-3140"
},
{
"refsource": "DEBIAN",
"name": "DSA-5252",
"url": "https://www.debian.org/security/2022/dsa-5252"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2022-775c747e4a",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TORANVTIWWBH3DNJR4UZATAG67KZOH32/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202212-04",
"url": "https://security.gentoo.org/glsa/202212-04"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20230326 [SECURITY] [DLA 3368-1] libreoffice security update",
"url": "https://lists.debian.org/debian-lts-announce/2023/03/msg00022.html"
}
]
},
"source": {
"discovery": "EXTERNAL"
}
},
"credits": [
{
"lang": "en",
"value": "TheSecurityDev working with Trend Micro Zero Day Initiative"
}
]
}

145
2022/42xxx/CVE-2022-42331.json
View File

@ -1,60 +1,12 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@xen.org",
"ID": "CVE-2022-42331",
"ASSIGNER": "security@xen.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_affected": "?",
"version_value": "consult Xen advisory XSA-429"
}
]
}
}
]
},
"vendor_name": "Xen"
}
]
}
},
"configuration": {
"configuration_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Xen versions 4.5 through 4.17 are vulnerable. Older versions are not\nvulnerable.\n\nOnly x86 CPUs are potentially vulnerable. CPUs of other architectures\nare not vulnerable.\n\nThe problematic codepath is only reachable on x86 CPUs which follow\nAMD's behaviour with respect to SYSCALL instructions from compatibility\nmode segments. This means that AMD and Hygon CPUs are potentially\nvulnerable, whereas Intel CPUs are not. Other vendors have not been\nchecked.\n\nOnly PV guests can leverage the vulnerability.\n\nOn Xen 4.16 and later, the vulnerability is only present if 32bit PV\nguest support is compiled in - i.e. CONFIG_PV32=y. On Xen 4.15 and\nolder, all supported build configurations are vulnerable.\n\nThe vulnerability is only present when booting on hardware that supports\nSMEP or SMAP (Supervisor Mode Execution/Access Prevention). This is\nbelieved to be some Family 0x16 models, and all later CPUs."
}
]
}
}
},
"credit": {
"credit_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "This issue was discovered by Andrew Cooper of XenServer."
}
]
}
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
@ -63,18 +15,6 @@
}
]
},
"impact": {
"impact_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "An attacker might be able to infer the contents of arbitrary host\nmemory, including memory assigned to other guests."
}
]
}
}
},
"problemtype": {
"problemtype_data": [
{
@ -87,6 +27,37 @@
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Xen",
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "consult Xen advisory XSA-429",
"status": "unknown"
}
]
}
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
@ -95,42 +66,36 @@
"name": "https://xenbits.xenproject.org/xsa/advisory-429.txt"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20230321 Xen Security Advisory 429 v3 (CVE-2022-42331) - x86: speculative vulnerability in 32bit SYSCALL path",
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/3"
"url": "https://www.debian.org/security/2023/dsa-5378",
"refsource": "MISC",
"name": "https://www.debian.org/security/2023/dsa-5378"
},
{
"refsource": "CONFIRM",
"name": "http://xenbits.xen.org/xsa/advisory-429.html",
"url": "http://xenbits.xen.org/xsa/advisory-429.html"
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/3",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2023/03/21/3"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-703f133eb3",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
"url": "http://xenbits.xen.org/xsa/advisory-429.html",
"refsource": "MISC",
"name": "http://xenbits.xen.org/xsa/advisory-429.html"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-da8315e641",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
},
{
"refsource": "DEBIAN",
"name": "DSA-5378",
"url": "https://www.debian.org/security/2023/dsa-5378"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
}
]
},
"workaround": {
"workaround_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Not running untrusted PV guests will avoid the issue."
}
]
}
"credits": [
{
"lang": "en",
"value": "{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'This issue was discovered by Andrew Cooper of XenServer.'}]}}}"
}
}
]
}

145
2022/42xxx/CVE-2022-42332.json
View File

@ -1,60 +1,12 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@xen.org",
"ID": "CVE-2022-42332",
"ASSIGNER": "security@xen.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_affected": "?",
"version_value": "consult Xen advisory XSA-427"
}
]
}
}
]
},
"vendor_name": "Xen"
}
]
}
},
"configuration": {
"configuration_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "All Xen versions from at least 3.2 onwards are vulnerable. Earlier\nversions have not been inspected.\n\nOnly x86 systems are vulnerable. The vulnerability is limited to\nmigration and snapshotting of guests, and only to PV ones as well as\nHVM or PVH ones run with shadow paging."
}
]
}
}
},
"credit": {
"credit_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "This issue was discovered by Jan Beulich of SUSE."
}
]
}
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
@ -63,18 +15,6 @@
}
]
},
"impact": {
"impact_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Guests running in shadow mode and being subject to migration or\nsnapshotting may be able to cause Denial of Service and other problems,\nincluding escalation of privilege."
}
]
}
}
},
"problemtype": {
"problemtype_data": [
{
@ -87,6 +27,37 @@
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Xen",
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "consult Xen advisory XSA-427",
"status": "unknown"
}
]
}
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
@ -95,42 +66,36 @@
"name": "https://xenbits.xenproject.org/xsa/advisory-427.txt"
},
{
"refsource": "CONFIRM",
"name": "http://xenbits.xen.org/xsa/advisory-427.html",
"url": "http://xenbits.xen.org/xsa/advisory-427.html"
"url": "https://www.debian.org/security/2023/dsa-5378",
"refsource": "MISC",
"name": "https://www.debian.org/security/2023/dsa-5378"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20230321 Xen Security Advisory 427 v2 (CVE-2022-42332) - x86 shadow plus log-dirty mode use-after-free",
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/1"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-703f133eb3",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-da8315e641",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
"url": "http://xenbits.xen.org/xsa/advisory-427.html",
"refsource": "MISC",
"name": "http://xenbits.xen.org/xsa/advisory-427.html"
},
{
"refsource": "DEBIAN",
"name": "DSA-5378",
"url": "https://www.debian.org/security/2023/dsa-5378"
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/1",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2023/03/21/1"
}
]
},
"workaround": {
"workaround_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Not migrating or snapshotting guests will avoid the vulnerability.\n\nRunning only HVM or PVH guests and only in HAP (Hardware Assisted\nPaging) mode will also avoid the vulnerability."
}
]
}
"credits": [
{
"lang": "en",
"value": "{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'This issue was discovered by Jan Beulich of SUSE.'}]}}}"
}
}
]
}

145
2022/42xxx/CVE-2022-42333.json
View File

@ -1,60 +1,12 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@xen.org",
"ID": "CVE-2022-42333",
"ASSIGNER": "security@xen.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_affected": "?",
"version_value": "consult Xen advisory XSA-428"
}
]
}
}
]
},
"vendor_name": "Xen"
}
]
}
},
"configuration": {
"configuration_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Xen versions 4.11 through 4.17 are vulnerable. Older versions contain\nthe same functionality, but it is exposed there only via an interface\nwhich is subject to XSA-77's constraints.\n\nOnly x86 systems are potentially vulnerable. Arm systems are not\nvulnerable.\n\nOnly entities controlling HVM guests can leverage the vulnerability.\nThese are device models running in either a stub domain or de-privileged\nin Dom0."
}
]
}
}
},
"credit": {
"credit_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Aspects of this issue were discovered by Andrew Cooper of XenServer and\nJan Beulich of SUSE."
}
]
}
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
@ -63,18 +15,6 @@
}
]
},
"impact": {
"impact_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Entities controlling HVM guests can run the host out of resources or\nstall execution of a physical CPU for effectively unbounded periods of\ntime, resulting in a Denial of Servis (DoS) affecting the entire host.\nCrashes, information leaks, or elevation of privilege cannot be ruled\nout."
}
]
}
}
},
"problemtype": {
"problemtype_data": [
{
@ -87,6 +27,37 @@
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Xen",
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "consult Xen advisory XSA-428",
"status": "unknown"
}
]
}
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
@ -95,42 +66,36 @@
"name": "https://xenbits.xenproject.org/xsa/advisory-428.txt"
},
{
"refsource": "CONFIRM",
"name": "http://xenbits.xen.org/xsa/advisory-428.html",
"url": "http://xenbits.xen.org/xsa/advisory-428.html"
"url": "https://www.debian.org/security/2023/dsa-5378",
"refsource": "MISC",
"name": "https://www.debian.org/security/2023/dsa-5378"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20230321 Xen Security Advisory 428 v3 (CVE-2022-42333,CVE-2022-42334) - x86/HVM pinned cache attributes mis-handling",
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/2"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-703f133eb3",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-da8315e641",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
"url": "http://xenbits.xen.org/xsa/advisory-428.html",
"refsource": "MISC",
"name": "http://xenbits.xen.org/xsa/advisory-428.html"
},
{
"refsource": "DEBIAN",
"name": "DSA-5378",
"url": "https://www.debian.org/security/2023/dsa-5378"
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/2",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2023/03/21/2"
}
]
},
"workaround": {
"workaround_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Running only PV or PVH guests will avoid the vulnerability.\n\n(Switching from a device model stub domain or a de-privileged device\nmodel to a fully privileged Dom0 device model does NOT mitigate this\nvulnerability. Rather, it simply recategorises the vulnerability to\nhostile management code, regarding it \"as designed\"; thus it merely\nreclassifies these issues as \"not a bug\". The security of a Xen system\nusing stub domains is still better than with a qemu-dm running as a Dom0\nprocess. Users and vendors of stub qemu dm systems should not change\ntheir configuration to use a Dom0 qemu process.)"
}
]
}
"credits": [
{
"lang": "en",
"value": "{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'Aspects of this issue were discovered by Andrew Cooper of XenServer and\\nJan Beulich of SUSE.'}]}}}"
}
}
]
}

145
2022/42xxx/CVE-2022-42334.json
View File

@ -1,60 +1,12 @@
{
"data_version": "4.0",
"data_type": "CVE",
"data_format": "MITRE",
"CVE_data_meta": {
"ASSIGNER": "security@xen.org",
"ID": "CVE-2022-42334",
"ASSIGNER": "security@xen.org",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_affected": "?",
"version_value": "consult Xen advisory XSA-428"
}
]
}
}
]
},
"vendor_name": "Xen"
}
]
}
},
"configuration": {
"configuration_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Xen versions 4.11 through 4.17 are vulnerable. Older versions contain\nthe same functionality, but it is exposed there only via an interface\nwhich is subject to XSA-77's constraints.\n\nOnly x86 systems are potentially vulnerable. Arm systems are not\nvulnerable.\n\nOnly entities controlling HVM guests can leverage the vulnerability.\nThese are device models running in either a stub domain or de-privileged\nin Dom0."
}
]
}
}
},
"credit": {
"credit_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Aspects of this issue were discovered by Andrew Cooper of XenServer and\nJan Beulich of SUSE."
}
]
}
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
@ -63,18 +15,6 @@
}
]
},
"impact": {
"impact_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Entities controlling HVM guests can run the host out of resources or\nstall execution of a physical CPU for effectively unbounded periods of\ntime, resulting in a Denial of Servis (DoS) affecting the entire host.\nCrashes, information leaks, or elevation of privilege cannot be ruled\nout."
}
]
}
}
},
"problemtype": {
"problemtype_data": [
{
@ -87,6 +27,37 @@
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Xen",
"product": {
"product_data": [
{
"product_name": "xen",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"versions": [
{
"version": "consult Xen advisory XSA-428",
"status": "unknown"
}
]
}
}
]
}
}
]
}
}
]
}
},
"references": {
"reference_data": [
{
@ -95,42 +66,36 @@
"name": "https://xenbits.xenproject.org/xsa/advisory-428.txt"
},
{
"refsource": "CONFIRM",
"name": "http://xenbits.xen.org/xsa/advisory-428.html",
"url": "http://xenbits.xen.org/xsa/advisory-428.html"
"url": "https://www.debian.org/security/2023/dsa-5378",
"refsource": "MISC",
"name": "https://www.debian.org/security/2023/dsa-5378"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20230321 Xen Security Advisory 428 v3 (CVE-2022-42333,CVE-2022-42334) - x86/HVM pinned cache attributes mis-handling",
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/2"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-703f133eb3",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APBMS2Q6746AXAFAITNJMGBNFGNMVLWR/"
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/",
"refsource": "MISC",
"name": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2023-da8315e641",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5L6PM4RE7MUE6OWA32ZVOXCP235RM2TM/"
"url": "http://xenbits.xen.org/xsa/advisory-428.html",
"refsource": "MISC",
"name": "http://xenbits.xen.org/xsa/advisory-428.html"
},
{
"refsource": "DEBIAN",
"name": "DSA-5378",
"url": "https://www.debian.org/security/2023/dsa-5378"
"url": "http://www.openwall.com/lists/oss-security/2023/03/21/2",
"refsource": "MISC",
"name": "http://www.openwall.com/lists/oss-security/2023/03/21/2"
}
]
},
"workaround": {
"workaround_data": {
"description": {
"description_data": [
{
"lang": "eng",
"value": "Running only PV or PVH guests will avoid the vulnerability.\n\n(Switching from a device model stub domain or a de-privileged device\nmodel to a fully privileged Dom0 device model does NOT mitigate this\nvulnerability. Rather, it simply recategorises the vulnerability to\nhostile management code, regarding it \"as designed\"; thus it merely\nreclassifies these issues as \"not a bug\". The security of a Xen system\nusing stub domains is still better than with a qemu-dm running as a Dom0\nprocess. Users and vendors of stub qemu dm systems should not change\ntheir configuration to use a Dom0 qemu process.)"
}
]
}
"credits": [
{
"lang": "en",
"value": "{'credit_data': {'description': {'description_data': [{'lang': 'eng', 'value': 'Aspects of this issue were discovered by Andrew Cooper of XenServer and\\nJan Beulich of SUSE.'}]}}}"
}
}
]
}