admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

- Synchronized data.

Browse Source
This commit is contained in:
CVE Team 2018-02-12 14:02:35 -05:00
parent 5e54a30366
commit 5f8743b71a
No known key found for this signature in database
GPG Key ID: 3504EC0FB4B2FE56
8 changed files with 81 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
2017/1000xxx/CVE-2017-1000405.json
View File

@ -60,6 +60,9 @@
{
"url" : "https://medium.com/bindecy/huge-dirty-cow-cve-2017-1000405-110eca132de0"
},
{
"url" : "https://source.android.com/security/bulletin/pixel/2018-02-01"
},
{
"url" : "https://access.redhat.com/errata/RHSA-2018:0180"
},

3
2017/11xxx/CVE-2017-11041.json
View File

@ -55,6 +55,9 @@
{
"url" : "https://source.android.com/security/bulletin/2017-09-01"
},
{
"url" : "https://source.android.com/security/bulletin/2018-02-01"
},
{
"url" : "http://www.securityfocus.com/bid/100658"
}

3
2017/11xxx/CVE-2017-11043.json
View File

@ -56,6 +56,9 @@
{
"url" : "https://source.android.com/security/bulletin/2017-12-01"
},
{
"url" : "https://source.android.com/security/bulletin/pixel/2018-02-01"
},
{
"url" : "http://www.securityfocus.com/bid/102073"
}

2
2017/13xxx/CVE-2017-13228.json
View File

@ -53,7 +53,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "In In fuction ih264d_ref_idx_reordering of libavc, there is an out-of-bounds write due to modCount being defined as an unsigned character. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-69478425."
"value" : "In function ih264d_ref_idx_reordering of libavc, there is an out-of-bounds write due to modCount being defined as an unsigned character. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1. Android ID: A-69478425."
}
]
},

2
2017/13xxx/CVE-2017-13231.json
View File

@ -38,7 +38,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "In libmediadrm, there is an out-of-bounds write due to improper input validation. This could lead to local elevation of privileges with no addtional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-67962232."
"value" : "In libmediadrm, there is an out-of-bounds write due to improper input validation. This could lead to local elevation of privileges with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-67962232."
}
]
},

2
2017/13xxx/CVE-2017-13236.json
View File

@ -38,7 +38,7 @@
"description_data" : [
{
"lang" : "eng",
"value" : "In the KeyStore service, there is a permissions bypass that allows access to protected resouces. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-68217699."
"value" : "In the KeyStore service, there is a permissions bypass that allows access to protected resources. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: 8.0, 8.1. Android ID: A-68217699."
}
]
},

3
2017/15xxx/CVE-2017-15265.json
View File

@ -73,6 +73,9 @@
{
"url" : "https://github.com/torvalds/linux/commit/71105998845fb012937332fe2e806d443c09e026"
},
{
"url" : "https://source.android.com/security/bulletin/2018-02-01"
},
{
"url" : "http://www.securityfocus.com/bid/101288"
},

66
2018/6xxx/CVE-2018-6927.json Normal file
View File

@ -0,0 +1,66 @@
{
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org",
"ID" : "CVE-2018-6927",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a",
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
},
"vendor_name" : "n/a"
}
]
}
},
"data_format" : "MITRE",
"data_type" : "CVE",
"data_version" : "4.0",
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value."
}
]
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "n/a"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"url" : "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=fbe0e839d1e22d88810f3ee3e2f1479be4c0aa4a"
},
{
"url" : "https://github.com/torvalds/linux/commit/fbe0e839d1e22d88810f3ee3e2f1479be4c0aa4a"
},
{
"url" : "https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.15"
}
]
}
}