From 5387f31c9895958fc0e83fc1f5ca94462ed5db42 Mon Sep 17 00:00:00 2001 From: Jakub Jirasek Date: Fri, 8 Jun 2018 10:19:25 +0200 Subject: [PATCH] Updated CVE-2018-5803.json --- 2018/5xxx/CVE-2018-5803.json | 100 +++++++++++++++++++++++++++++++++-- 1 file changed, 97 insertions(+), 3 deletions(-) diff --git a/2018/5xxx/CVE-2018-5803.json b/2018/5xxx/CVE-2018-5803.json index 4379fd8ed36..d8194cbdc7c 100644 --- a/2018/5xxx/CVE-2018-5803.json +++ b/2018/5xxx/CVE-2018-5803.json @@ -1,8 +1,31 @@ { "CVE_data_meta" : { - "ASSIGNER" : "cve@mitre.org", + "ASSIGNER" : "PSIRT-CNA@flexerasoftware.com", "ID" : "CVE-2018-5803", - "STATE" : "RESERVED" + "STATE" : "PUBLIC" + }, + "affects" : { + "vendor" : { + "vendor_data" : [ + { + "product" : { + "product_data" : [ + { + "product_name" : "Linux Kernel", + "version" : { + "version_data" : [ + { + "version_value" : "Before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4.1.51, and 3.2.102." + } + ] + } + } + ] + }, + "vendor_name" : "Linux Foundation" + } + ] + } }, "data_format" : "MITRE", "data_type" : "CVE", @@ -11,8 +34,79 @@ "description_data" : [ { "lang" : "eng", - "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value" : "An error in the \"_sctp_make_chunk()\" function (net/sctp/sm_make_chunk.c) when handling SCTP packets length can be exploited to cause a kernel crash." } ] + }, + "problemtype" : { + "problemtype_data" : [ + { + "description" : [ + { + "lang" : "eng", + "value" : "Denial of Service" + } + ] + } + ] + }, + "references" : { + "reference_data" : [ + { + "name" : "https://secuniaresearch.flexerasoftware.com/secunia_research/2018-2/", + "refsource" : "MLIST", + "url" : "https://secuniaresearch.flexerasoftware.com/secunia_research/2018-2/" + }, + { + "name" : "https://secuniaresearch.flexerasoftware.com/advisories/81331/", + "refsource" : "MISC", + "url" : "https://secuniaresearch.flexerasoftware.com/advisories/81331/" + }, + { + "name" : "https://www.spinics.net/lists/netdev/msg482523.html", + "refsource" : "MISC", + "url" : "https://www.spinics.net/lists/netdev/msg482523.html" + }, + { + "name" : "https://www.spinics.net/lists/linux-sctp/msg07036.html", + "refsource" : "MISC", + "url" : "https://www.spinics.net/lists/linux-sctp/msg07036.html" + }, + { + "name" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.25", + "refsource" : "MISC", + "url" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.25" + }, + { + "name" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.8", + "refsource" : "MISC", + "url" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.15.8" + }, + { + "name" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.87", + "refsource" : "MISC", + "url" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.9.87" + }, + { + "name" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.121", + "refsource" : "MISC", + "url" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.4.121" + }, + { + "name" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.51", + "refsource" : "MISC", + "url" : "https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.1.51" + }, + { + "name" : "https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.102", + "refsource" : "MISC", + "url" : "https://cdn.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.2.102" + }, + { + "name" : "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=07f2c7ab6f8d0a7e7c5764c4e6cc9c52951b9d9c", + "refsource" : "MISC", + "url" : "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?id=07f2c7ab6f8d0a7e7c5764c4e6cc9c52951b9d9c" + } + ] } }