"-Synchronized-Data."

2025-08-04 08:44:25 +00:00 · 2019-11-13 07:01:52 +00:00 · 2019-11-13 07:01:52 +00:00 · 656ae276b3
commit 656ae276b3
parent 0768c0639c
4 changed files with 21 additions and 1 deletions
--- a/2017/4xxx/CVE-2017-4995.json
+++ b/2017/4xxx/CVE-2017-4995.json
@ -1,6 +1,6 @@
 {
    "CVE_data_meta": {
-        "ASSIGNER": "security_alert@emc.com",
+        "ASSIGNER": "secure@dell.com",
        "ID": "CVE-2017-4995",
        "STATE": "PUBLIC"
    },
@ -61,6 +61,11 @@
                "name": "99080",
                "refsource": "BID",
                "url": "http://www.securityfocus.com/bid/99080"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15416) CVE-2017-7525 ( jackson-databind is vulnerable to Remote Code Execution) on version 3.11.4",
+                "url": "https://lists.apache.org/thread.html/4641ed8616ccc2c1fbddac2c3dc9900c96387bc226eaf0232d61909b@%3Ccommits.cassandra.apache.org%3E"
            }
        ]
    }
--- a/2017/7xxx/CVE-2017-7525.json
+++ b/2017/7xxx/CVE-2017-7525.json
@ -303,6 +303,11 @@
                "refsource": "REDHAT",
                "name": "RHSA-2019:3149",
                "url": "https://access.redhat.com/errata/RHSA-2019:3149"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15416) CVE-2017-7525 ( jackson-databind is vulnerable to Remote Code Execution) on version 3.11.4",
+                "url": "https://lists.apache.org/thread.html/4641ed8616ccc2c1fbddac2c3dc9900c96387bc226eaf0232d61909b@%3Ccommits.cassandra.apache.org%3E"
            }
        ]
    }
--- a/2019/0xxx/CVE-2019-0205.json
+++ b/2019/0xxx/CVE-2019-0205.json
@ -83,6 +83,11 @@
                "refsource": "MLIST",
                "name": "[thrift-user] 20191108 Re: CVE-2019-0205",
                "url": "https://lists.apache.org/thread.html/1193444c17f499f92cd198d464a2c1ffc92182c83487345a854914b3@%3Cuser.thrift.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15415) CVE-2019-0205 (Apache Thrift all versions up to and including 0.12.0 vulnerable) of severity 7.5",
+                "url": "https://lists.apache.org/thread.html/9f7150d0b02e72d1154721a412e80cf797f1b7cfa295fcefc67b1381@%3Ccommits.cassandra.apache.org%3E"
            }
        ]
    },
--- a/2019/16xxx/CVE-2019-16869.json
+++ b/2019/16xxx/CVE-2019-16869.json
@ -161,6 +161,11 @@
                "refsource": "MLIST",
                "name": "[tinkerpop-commits] 20191022 [tinkerpop] branch tp34 updated: Bump to Netty 4.1.42 fixes CVE-2019-16869 - CTR",
                "url": "https://lists.apache.org/thread.html/e192fe8797c192679759ffa6b15e4d0806546945a41d8ebfbc6ee3ac@%3Ccommits.tinkerpop.apache.org%3E"
+            },
+            {
+                "refsource": "MLIST",
+                "name": "[cassandra-commits] 20191113 [jira] [Created] (CASSANDRA-15417) CVE-2019-16869(Netty is vulnerable to HTTP Request Smuggling) of severity 7.5",
+                "url": "https://lists.apache.org/thread.html/d14f721e0099b914daebe29bca199fde85d8354253be9d6d3d46507a@%3Ccommits.cassandra.apache.org%3E"
            }
        ]
    }