From 74e229d8da53bd58e359d6e910a7b06cd728cf64 Mon Sep 17 00:00:00 2001 From: Seth Arnold Date: Thu, 10 Dec 2020 03:59:47 +0000 Subject: [PATCH] apt, python-apt, issues --- 2020/27xxx/CVE-2020-27350.json | 112 ++++++++++++++++++++++++++++++--- 2020/27xxx/CVE-2020-27351.json | 112 ++++++++++++++++++++++++++++++--- 2 files changed, 210 insertions(+), 14 deletions(-) diff --git a/2020/27xxx/CVE-2020-27350.json b/2020/27xxx/CVE-2020-27350.json index 8e665e011c1..9827ebd24c1 100644 --- a/2020/27xxx/CVE-2020-27350.json +++ b/2020/27xxx/CVE-2020-27350.json @@ -1,18 +1,116 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { + "ASSIGNER": "security@ubuntu.com", + "DATE_PUBLIC": "2020-12-09T00:00:00.000Z", "ID": "CVE-2020-27350", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "STATE": "PUBLIC", + "TITLE": "apt integer wraparound" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "apt", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "1.2.32ubuntu0", + "version_value": "1.2.32ubuntu0.2" + }, + { + "version_affected": "<", + "version_name": "1.6.12ubuntu0", + "version_value": "1.6.12ubuntu0.2" + }, + { + "version_affected": "<", + "version_name": "2.0.2ubuntu0", + "version_value": "2.0.2ubuntu0.2" + }, + { + "version_affected": "<", + "version_name": "2.1.10ubuntu0", + "version_value": "2.1.10ubuntu0.1" + } + ] + } + } + ] + }, + "vendor_name": "Canonical" + } + ] + } + }, + "credit": [ + { + "lang": "eng", + "value": "Kevin Backhouse" + } + ], + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "APT had several integer overflows and underflows while parsing .deb packages, aka GHSL-2020-168 GHSL-2020-169, in files apt-pkg/contrib/extracttar.cc, apt-pkg/deb/debfile.cc, and apt-pkg/contrib/arfile.cc. \nThis issue affects:\napt\n1.2.32ubuntu0 versions prior to 1.2.32ubuntu0.2;\n1.6.12ubuntu0 versions prior to 1.6.12ubuntu0.2;\n2.0.2ubuntu0 versions prior to 2.0.2ubuntu0.2;\n2.1.10ubuntu0 versions prior to 2.1.10ubuntu0.1;" } ] + }, + "generator": { + "engine": "Vulnogram 0.0.9" + }, + "impact": { + "cvss": { + "attackComplexity": "LOW", + "attackVector": "LOCAL", + "availabilityImpact": "LOW", + "baseScore": 5.7, + "baseSeverity": "MEDIUM", + "confidentialityImpact": "LOW", + "integrityImpact": "LOW", + "privilegesRequired": "HIGH", + "scope": "CHANGED", + "userInteraction": "NONE", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L", + "version": "3.1" + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-190 Integer Overflow or Wraparound" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "UBUNTU", + "url": "https://usn.ubuntu.com/usn/usn-4667-1" + }, + { + "refsource": "CONFIRM", + "url": "https://bugs.launchpad.net/bugs/1899193" + } + ] + }, + "source": { + "advisory": "https://usn.ubuntu.com/usn/usn-4667-1", + "defect": [ + "https://bugs.launchpad.net/bugs/1899193" + ], + "discovery": "EXTERNAL" } -} \ No newline at end of file +} diff --git a/2020/27xxx/CVE-2020-27351.json b/2020/27xxx/CVE-2020-27351.json index d52d1309d1e..ea400a00553 100644 --- a/2020/27xxx/CVE-2020-27351.json +++ b/2020/27xxx/CVE-2020-27351.json @@ -1,18 +1,116 @@ { - "data_type": "CVE", - "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { + "ASSIGNER": "security@ubuntu.com", + "DATE_PUBLIC": "2020-12-09T00:00:00.000Z", "ID": "CVE-2020-27351", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "STATE": "PUBLIC", + "TITLE": "Various memory and file descriptor leaks in apt-python" }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "python-apt", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "1.1.0~beta1", + "version_value": "1.1.0~beta1ubuntu0.16.04.10" + }, + { + "version_affected": "<", + "version_name": "1.6.5ubuntu0", + "version_value": "1.6.5ubuntu0.4" + }, + { + "version_affected": "<", + "version_name": "2.0.0ubuntu0", + "version_value": "2.0.0ubuntu0.20.04.2" + }, + { + "version_affected": "<", + "version_name": "2.1.3ubuntu1", + "version_value": "2.1.3ubuntu1.1" + } + ] + } + } + ] + }, + "vendor_name": "Canonical" + } + ] + } + }, + "credit": [ + { + "lang": "eng", + "value": "Kevin Backhouse" + } + ], + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "Various memory and file descriptor leaks were found in apt-python files python/arfile.cc, python/tag.cc, python/tarfile.cc, aka GHSL-2020-170.\nThis issue affects:\npython-apt\n1.1.0~beta1 versions prior to 1.1.0~beta1ubuntu0.16.04.10;\n1.6.5ubuntu0 versions prior to 1.6.5ubuntu0.4;\n2.0.0ubuntu0 versions prior to 2.0.0ubuntu0.20.04.2;\n2.1.3ubuntu1 versions prior to 2.1.3ubuntu1.1;" } ] + }, + "generator": { + "engine": "Vulnogram 0.0.9" + }, + "impact": { + "cvss": { + "attackComplexity": "LOW", + "attackVector": "LOCAL", + "availabilityImpact": "LOW", + "baseScore": 2, + "baseSeverity": "LOW", + "confidentialityImpact": "NONE", + "integrityImpact": "NONE", + "privilegesRequired": "HIGH", + "scope": "UNCHANGED", + "userInteraction": "REQUIRED", + "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:L", + "version": "3.1" + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-772 Missing Release of Resource after Effective Lifetime" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "refsource": "UBUNTU", + "url": "https://usn.ubuntu.com/usn/usn-4668-1" + }, + { + "refsource": "CONFIRM", + "url": "https://bugs.launchpad.net/bugs/1899193" + } + ] + }, + "source": { + "advisory": "https://usn.ubuntu.com/usn/usn-4668-1", + "defect": [ + "https://bugs.launchpad.net/bugs/1899193" + ], + "discovery": "EXTERNAL" } -} \ No newline at end of file +}