diff --git a/2019/14xxx/CVE-2019-14452.json b/2019/14xxx/CVE-2019-14452.json new file mode 100644 index 00000000000..c89421c03c4 --- /dev/null +++ b/2019/14xxx/CVE-2019-14452.json @@ -0,0 +1,92 @@ +{ + "CVE_data_meta": { + "ASSIGNER": "cve@mitre.org", + "ID": "CVE-2019-14452", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "n/a", + "version": { + "version_data": [ + { + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "n/a" + } + ] + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Sigil before 0.9.16 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in a ZIP archive entry that is mishandled during extraction." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "n/a" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://github.com/Sigil-Ebook/flightcrew/issues/52#issuecomment-505967936", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/flightcrew/issues/52#issuecomment-505967936" + }, + { + "url": "https://github.com/Sigil-Ebook/flightcrew/issues/52#issuecomment-505997355", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/flightcrew/issues/52#issuecomment-505997355" + }, + { + "url": "https://github.com/Sigil-Ebook/Sigil/commit/369eebe936e4a8c83cc54662a3412ce8bef189e4", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/Sigil/commit/369eebe936e4a8c83cc54662a3412ce8bef189e4" + }, + { + "url": "https://github.com/Sigil-Ebook/Sigil/commit/04e2f280cc4a0766bedcc7b9eb56449ceecc2ad4", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/Sigil/commit/04e2f280cc4a0766bedcc7b9eb56449ceecc2ad4" + }, + { + "url": "https://github.com/Sigil-Ebook/Sigil/commit/0979ba8d10c96ebca330715bfd4494ea0e019a8f", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/Sigil/commit/0979ba8d10c96ebca330715bfd4494ea0e019a8f" + }, + { + "url": "https://github.com/Sigil-Ebook/Sigil/releases/tag/0.9.16", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/Sigil/releases/tag/0.9.16" + }, + { + "url": "https://github.com/Sigil-Ebook/Sigil/compare/ea7f27d...5b867e5", + "refsource": "MISC", + "name": "https://github.com/Sigil-Ebook/Sigil/compare/ea7f27d...5b867e5" + } + ] + } +} \ No newline at end of file diff --git a/2019/2xxx/CVE-2019-2745.json b/2019/2xxx/CVE-2019-2745.json index e34a68c9faa..49e0b04aa73 100644 --- a/2019/2xxx/CVE-2019-2745.json +++ b/2019/2xxx/CVE-2019-2745.json @@ -57,6 +57,11 @@ "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] } diff --git a/2019/2xxx/CVE-2019-2762.json b/2019/2xxx/CVE-2019-2762.json index 092b2c2a74b..cd792a0c678 100644 --- a/2019/2xxx/CVE-2019-2762.json +++ b/2019/2xxx/CVE-2019-2762.json @@ -61,6 +61,11 @@ "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] } diff --git a/2019/2xxx/CVE-2019-2769.json b/2019/2xxx/CVE-2019-2769.json index 5165bca1de7..e1685d68462 100644 --- a/2019/2xxx/CVE-2019-2769.json +++ b/2019/2xxx/CVE-2019-2769.json @@ -61,6 +61,11 @@ "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] } diff --git a/2019/2xxx/CVE-2019-2786.json b/2019/2xxx/CVE-2019-2786.json index f072238b5e2..f6776ba13ac 100644 --- a/2019/2xxx/CVE-2019-2786.json +++ b/2019/2xxx/CVE-2019-2786.json @@ -61,6 +61,11 @@ "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] } diff --git a/2019/2xxx/CVE-2019-2816.json b/2019/2xxx/CVE-2019-2816.json index bd608f42bfa..b7cf334af27 100644 --- a/2019/2xxx/CVE-2019-2816.json +++ b/2019/2xxx/CVE-2019-2816.json @@ -61,6 +61,11 @@ "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] } diff --git a/2019/2xxx/CVE-2019-2842.json b/2019/2xxx/CVE-2019-2842.json index 4e4a9b93cce..a460d64b21c 100644 --- a/2019/2xxx/CVE-2019-2842.json +++ b/2019/2xxx/CVE-2019-2842.json @@ -57,6 +57,11 @@ "url": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html", "refsource": "MISC", "name": "http://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] } diff --git a/2019/7xxx/CVE-2019-7317.json b/2019/7xxx/CVE-2019-7317.json index f6f4a066ec9..8179196cc27 100644 --- a/2019/7xxx/CVE-2019-7317.json +++ b/2019/7xxx/CVE-2019-7317.json @@ -191,6 +191,11 @@ "refsource": "CONFIRM", "name": "https://security.netapp.com/advisory/ntap-20190719-0005/", "url": "https://security.netapp.com/advisory/ntap-20190719-0005/" + }, + { + "refsource": "UBUNTU", + "name": "USN-4080-1", + "url": "https://usn.ubuntu.com/4080-1/" } ] }