From 7c53c8294e119695cfb95a65591a5aebfa02be8e Mon Sep 17 00:00:00 2001 From: CVE Team Date: Mon, 21 Dec 2020 01:01:55 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2020/29xxx/CVE-2020-29447.json | 136 +++++++++++++++++---------------- 2020/35xxx/CVE-2020-35573.json | 5 ++ 2 files changed, 74 insertions(+), 67 deletions(-) diff --git a/2020/29xxx/CVE-2020-29447.json b/2020/29xxx/CVE-2020-29447.json index 1688d2f2c84..e64d9e06c5d 100644 --- a/2020/29xxx/CVE-2020-29447.json +++ b/2020/29xxx/CVE-2020-29447.json @@ -1,70 +1,72 @@ { - "CVE_data_meta": { - "ASSIGNER": "security@atlassian.com", - "DATE_PUBLIC": "2020-12-10T00:00:00", - "ID": "CVE-2020-29447", - "STATE": "PUBLIC" - }, - "affects": { - "vendor": { - "vendor_data": [ - { - "product": { - "product_data": [ - { - "product_name": "Crucible", - "version": { - "version_data": [ - { - "version_value": "4.7.4", - "version_affected": "<" - }, - { - "version_value": "4.8.0", - "version_affected": ">=" - }, - { - "version_value": "4.8.5", - "version_affected": "<" - } - ] - } - } - ] - }, - "vendor_name": "Atlassian" - } - ] - } - }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews. The affected versions are before version 4.7.4, and from version 4.8.0 before 4.8.5." - } - ] - }, - "problemtype": { - "problemtype_data": [ - { - "description": [ - { - "lang": "eng", - "value": "Denial of Service (DoS)" - } + "CVE_data_meta": { + "ASSIGNER": "security@atlassian.com", + "DATE_PUBLIC": "2020-12-10T00:00:00", + "ID": "CVE-2020-29447", + "STATE": "PUBLIC" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Crucible", + "version": { + "version_data": [ + { + "version_value": "4.7.4", + "version_affected": "<" + }, + { + "version_value": "4.8.0", + "version_affected": ">=" + }, + { + "version_value": "4.8.5", + "version_affected": "<" + } + ] + } + } + ] + }, + "vendor_name": "Atlassian" + } ] - } - ] - }, - "references": { - "reference_data": [ - { - "url": "https://jira.atlassian.com/browse/CRUC-8505" - } - ] - } + } + }, + "data_format": "MITRE", + "data_type": "CVE", + "data_version": "4.0", + "description": { + "description_data": [ + { + "lang": "eng", + "value": "Affected versions of Atlassian Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the file upload request feature of code reviews. The affected versions are before version 4.7.4, and from version 4.8.0 before 4.8.5." + } + ] + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "Denial of Service (DoS)" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "url": "https://jira.atlassian.com/browse/CRUC-8505", + "refsource": "MISC", + "name": "https://jira.atlassian.com/browse/CRUC-8505" + } + ] + } } \ No newline at end of file diff --git a/2020/35xxx/CVE-2020-35573.json b/2020/35xxx/CVE-2020-35573.json index 51e8afe2dcd..b3484777724 100644 --- a/2020/35xxx/CVE-2020-35573.json +++ b/2020/35xxx/CVE-2020-35573.json @@ -56,6 +56,11 @@ "url": "https://github.com/roehling/postsrsd/commit/4733fb11f6bec6524bb8518c5e1a699288c26bac", "refsource": "MISC", "name": "https://github.com/roehling/postsrsd/commit/4733fb11f6bec6524bb8518c5e1a699288c26bac" + }, + { + "refsource": "MLIST", + "name": "[debian-lts-announce] 20201220 [SECURITY] [DLA 2502-1] postsrsd security update", + "url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00031.html" } ] }