Auto-merge PR#3625

2025-06-19 17:32:41 +00:00 · 2020-04-17 14:35:12 -04:00 · 2020-04-17 14:35:12 -04:00 · 4352d8ac06
commit 4352d8ac06
parent c054b42fc6 9c5c196251
1 changed files with 61 additions and 3 deletions
--- a/2020/1xxx/CVE-2020-1751.json
+++ b/2020/1xxx/CVE-2020-1751.json
@ -4,15 +4,73 @@
    "data_version": "4.0",
    "CVE_data_meta": {
        "ID": "CVE-2020-1751",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "ASSIGNER": "gsuckevi@redhat.com"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "vendor_name": "Red Hat",
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "glibc",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "2.31"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    }
+                }
+            ]
+        }
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "CWE-787"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1751",
+                "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-1751",
+                "refsource": "CONFIRM"
+            },
+            {
+                "url": "https://sourceware.org/bugzilla/show_bug.cgi?id=25423",
+                "name": "https://sourceware.org/bugzilla/show_bug.cgi?id=25423",
+                "refsource": "MISC"
+            }
+        ]
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not properly check the array bounds when storing the frame address, resulting in a denial of service or potential code execution. The highest threat from this vulnerability is to system availability."
            }
        ]
+    },
+    "impact": {
+        "cvss": [
+            [
+                {
+                    "vectorString": "5.1/CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
+                    "version": "3.0"
+                }
+            ]
+        ]
    }
 }