"-Synchronized-Data."

2025-05-06 18:53:08 +00:00 · 2020-07-21 22:01:23 +00:00 · 2020-07-21 22:01:23 +00:00 · 5dfc8e5104
commit 5dfc8e5104
parent a67e0bc3b2
3 changed files with 216 additions and 0 deletions
--- a/2020/15xxx/CVE-2020-15888.json
+++ b/2020/15xxx/CVE-2020-15888.json
@ -0,0 +1,87 @@
+{
+    "CVE_data_meta": {
+        "ASSIGNER": "cve@mitre.org",
+        "ID": "CVE-2020-15888",
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://github.com/lua/lua/commit/eb41999461b6f428186c55abd95f4ce1a76217d5",
+                "refsource": "MISC",
+                "name": "https://github.com/lua/lua/commit/eb41999461b6f428186c55abd95f4ce1a76217d5"
+            },
+            {
+                "url": "https://github.com/lua/lua/commit/6298903e35217ab69c279056f925fb72900ce0b7",
+                "refsource": "MISC",
+                "name": "https://github.com/lua/lua/commit/6298903e35217ab69c279056f925fb72900ce0b7"
+            },
+            {
+                "url": "http://lua-users.org/lists/lua-l/2020-07/msg00053.html",
+                "refsource": "MISC",
+                "name": "http://lua-users.org/lists/lua-l/2020-07/msg00053.html"
+            },
+            {
+                "url": "http://lua-users.org/lists/lua-l/2020-07/msg00054.html",
+                "refsource": "MISC",
+                "name": "http://lua-users.org/lists/lua-l/2020-07/msg00054.html"
+            },
+            {
+                "url": "http://lua-users.org/lists/lua-l/2020-07/msg00071.html",
+                "refsource": "MISC",
+                "name": "http://lua-users.org/lists/lua-l/2020-07/msg00071.html"
+            },
+            {
+                "url": "http://lua-users.org/lists/lua-l/2020-07/msg00079.html",
+                "refsource": "MISC",
+                "name": "http://lua-users.org/lists/lua-l/2020-07/msg00079.html"
+            }
+        ]
+    }
+}
--- a/2020/15xxx/CVE-2020-15889.json
+++ b/2020/15xxx/CVE-2020-15889.json
@ -0,0 +1,67 @@
+{
+    "CVE_data_meta": {
+        "ASSIGNER": "cve@mitre.org",
+        "ID": "CVE-2020-15889",
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "Lua through 5.4.0 has a getobjname heap-based buffer over-read because youngcollection in lgc.c uses markold for an insufficient number of list members."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "http://lua-users.org/lists/lua-l/2020-07/msg00078.html",
+                "refsource": "MISC",
+                "name": "http://lua-users.org/lists/lua-l/2020-07/msg00078.html"
+            },
+            {
+                "url": "https://github.com/lua/lua/commit/127e7a6c8942b362aa3c6627f44d660a4fb75312",
+                "refsource": "MISC",
+                "name": "https://github.com/lua/lua/commit/127e7a6c8942b362aa3c6627f44d660a4fb75312"
+            }
+        ]
+    }
+}
--- a/2020/15xxx/CVE-2020-15890.json
+++ b/2020/15xxx/CVE-2020-15890.json
@ -0,0 +1,62 @@
+{
+    "CVE_data_meta": {
+        "ASSIGNER": "cve@mitre.org",
+        "ID": "CVE-2020-15890",
+        "STATE": "PUBLIC"
+    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "n/a",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_value": "n/a"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "n/a"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "LuaJit through 2.1.0-beta3 has an out-of-bounds read because __gc handler frame traversal is mishandled."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "n/a"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "url": "https://github.com/LuaJIT/LuaJIT/issues/601",
+                "refsource": "MISC",
+                "name": "https://github.com/LuaJIT/LuaJIT/issues/601"
+            }
+        ]
+    }
+}