diff --git a/2020/1xxx/CVE-2020-1751.json b/2020/1xxx/CVE-2020-1751.json index 2cdb20160a1..5e19a7dec55 100644 --- a/2020/1xxx/CVE-2020-1751.json +++ b/2020/1xxx/CVE-2020-1751.json @@ -4,15 +4,73 @@ "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2020-1751", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "gsuckevi@redhat.com" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Red Hat", + "product": { + "product_data": [ + { + "product_name": "glibc", + "version": { + "version_data": [ + { + "version_value": "2.31" + } + ] + } + } + ] + } + } + ] + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-787" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1751", + "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1751", + "refsource": "CONFIRM" + }, + { + "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=25423", + "name": "https://sourceware.org/bugzilla/show_bug.cgi?id=25423", + "refsource": "MISC" + } + ] }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not properly check the array bounds when storing the frame address, resulting in a denial of service or potential code execution. The highest threat from this vulnerability is to system availability." } ] + }, + "impact": { + "cvss": [ + [ + { + "vectorString": "5.1/CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", + "version": "3.0" + } + ] + ] } } \ No newline at end of file