"-Synchronized-Data."

2025-08-04 08:44:25 +00:00 · 2020-12-11 10:01:49 +00:00 · 2020-12-11 10:01:49 +00:00 · 544f75bd71
commit 544f75bd71
parent cfc98e2dd6
3 changed files with 20 additions and 7 deletions
--- a/2019/17xxx/CVE-2019-17566.json
+++ b/2019/17xxx/CVE-2019-17566.json
@ -53,6 +53,11 @@
                "refsource": "MLIST",
                "name": "[myfaces-commits] 20201120 [myfaces-tobago] branch tobago-2.x updated: Update batik dependency from 1.9 to 1.13, because of CVE-2019-17566",
                "url": "https://lists.apache.org/thread.html/rab94fe68b180d2e2fba97abf6fe1ec83cff826be25f86cd90f047171@%3Ccommits.myfaces.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[myfaces-commits] 20201211 [myfaces-tobago] 21/22: Update batik dependency from 1.9 to 1.13, because of CVE-2019-17566",
+                "url": "https://lists.apache.org/thread.html/rcab14a9ec91aa4c151e0729966282920423eff50a22759fd21db6509@%3Ccommits.myfaces.apache.org%3E"
            }
        ]
    },
--- a/2020/1xxx/CVE-2020-1945.json
+++ b/2020/1xxx/CVE-2020-1945.json
@ -263,6 +263,11 @@
                "refsource": "MLIST",
                "name": "[groovy-notifications] 20201207 [jira] [Closed] (GROOVY-9824) CVE-2020-17521 Apache Groovy Information Disclosure",
                "url": "https://lists.apache.org/thread.html/ra9dab34bf8625511f23692ad0fcee2725f782e9aad6c5cdff6cf4465@%3Cnotifications.groovy.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[myfaces-commits] 20201211 [myfaces-tobago] 02/22: update ant because of CVE-2020-1945",
+                "url": "https://lists.apache.org/thread.html/rb860063819b9c0990e1fbce29d83f4554766fe5a05e3b3939736bf2b@%3Ccommits.myfaces.apache.org%3E"
            }
        ]
    },
--- a/2020/7xxx/CVE-2020-7789.json
+++ b/2020/7xxx/CVE-2020-7789.json
@ -48,16 +48,19 @@
    "references": {
        "reference_data": [
            {
-                "refsource": "CONFIRM",
-                "url": "https://snyk.io/vuln/SNYK-JS-NODENOTIFIER-1035794"
+                "refsource": "MISC",
+                "url": "https://snyk.io/vuln/SNYK-JS-NODENOTIFIER-1035794",
+                "name": "https://snyk.io/vuln/SNYK-JS-NODENOTIFIER-1035794"
            },
            {
-                "refsource": "CONFIRM",
-                "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1050371"
+                "refsource": "MISC",
+                "url": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1050371",
+                "name": "https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARSNPM-1050371"
            },
            {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/mikaelbr/node-notifier/blob/master/lib/utils.js%23L303"
+                "refsource": "MISC",
+                "url": "https://github.com/mikaelbr/node-notifier/blob/master/lib/utils.js%23L303",
+                "name": "https://github.com/mikaelbr/node-notifier/blob/master/lib/utils.js%23L303"
            }
        ]
    },
@ -65,7 +68,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "This affects the package node-notifier before 9.0.0.\n It allows an attacker to run arbitrary commands on Linux machines due to the options params not being sanitised when being passed an array.\n"
+                "value": "This affects the package node-notifier before 9.0.0. It allows an attacker to run arbitrary commands on Linux machines due to the options params not being sanitised when being passed an array."
            }
        ]
    },