admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-19 17:32:41 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2021-03-05 19:00:41 +00:00
parent 65055ec2c0
commit 94d7b3ff7a
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
11 changed files with 89 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
2015/9xxx/CVE-2015-9101.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.98.4, 3.98.2, 3.98 and 3.99.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file."
"value": "The fill_buffer_resample function in util.c in libmp3lame.a in LAME 3.98.4, 3.98.2, 3.98, 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4 and 3.99.5 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted audio file."
}
]
},

2
2016/10xxx/CVE-2016-10093.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5 and 4.0.0alpha6 allows remote attackers to have unspecified impact via a crafted image, which triggers a heap-based buffer overflow."
"value": "Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7, 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0beta7, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5 and 4.0.6 allows remote attackers to have unspecified impact via a crafted image, which triggers a heap-based buffer overflow."
}
]
},

5
2017/15xxx/CVE-2017-15709.json
View File

@ -87,6 +87,11 @@
"refsource": "MLIST",
"name": "[activemq-gitbox] 20191022 [GitHub] [activemq-website] coheigea commented on a change in pull request #17: Fix the ordering in the security advisories page",
"url": "https://lists.apache.org/thread.html/c0ec53b72b3240b187afb1cf67e4309a9e5f607282010aa196734814@%3Cgitbox.activemq.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20210305 [SECURITY] [DLA 2583-1] activemq security update",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00005.html"
}
]
}

5
2018/11xxx/CVE-2018-11775.json
View File

@ -122,6 +122,11 @@
"name": "http://activemq.apache.org/security-advisories.data/CVE-2018-11775-announcement.txt",
"refsource": "CONFIRM",
"url": "http://activemq.apache.org/security-advisories.data/CVE-2018-11775-announcement.txt"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20210305 [SECURITY] [DLA 2583-1] activemq security update",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00005.html"
}
]
}

2
2018/12xxx/CVE-2018-12900.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file."
"value": "Heap-based buffer overflow in the cpSeparateBufToContigBuf function in tiffcp.c in LibTIFF 3.9.3, 3.9.4, 3.9.5, 3.9.6, 3.9.7, 4.0.0beta7, 4.0.0alpha4, 4.0.0alpha5, 4.0.0alpha6, 4.0.0, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.4beta, 4.0.5, 4.0.6, 4.0.7, 4.0.8 and 4.0.9 allows remote attackers to cause a denial of service (crash) or possibly have unspecified other impact via a crafted TIFF file."
}
]
},

2
2018/6xxx/CVE-2018-6381.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64 and 0.13.63 there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated against the amount of file->stored data."
"value": "In ZZIPlib 0.13.67, 0.13.66, 0.13.65, 0.13.64, 0.13.63, 0.13.62, 0.13.61, 0.13.60, 0.13.59, 0.13.58, 0.13.57 and 0.13.56 there is a segmentation fault caused by invalid memory access in the zzip_disk_fread function (zzip/mmapped.c) because the size variable is not validated against the amount of file->stored data."
}
]
},

10
2019/0xxx/CVE-2019-0222.json
View File

@ -128,6 +128,16 @@
"refsource": "MLIST",
"name": "[activemq-commits] 20210208 [activemq-website] branch master updated: Publish CVE-2020-13947",
"url": "https://lists.apache.org/thread.html/r946488fb942fd35c6a6e0359f52504a558ed438574a8f14d36d7dcd7@%3Ccommits.activemq.apache.org%3E"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20210305 [SECURITY] [DLA 2582-1] mqtt-client security update",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00004.html"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20210305 [SECURITY] [DLA 2583-1] activemq security update",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00005.html"
}
]
},

5
2021/26xxx/CVE-2021-26117.json
View File

@ -99,6 +99,11 @@
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20210304-0008/",
"url": "https://security.netapp.com/advisory/ntap-20210304-0008/"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20210305 [SECURITY] [DLA 2583-1] activemq security update",
"url": "https://lists.debian.org/debian-lts-announce/2021/03/msg00005.html"
}
]
},

56
2021/26xxx/CVE-2021-26705.json
View File

@ -1,17 +1,61 @@
{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2021-26705",
"ASSIGNER": "cve@mitre.org",
"STATE": "RESERVED"
"ID": "CVE-2021-26705",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "An issue was discovered in SquareBox CatDV Server through 9.2. An attacker can invoke sensitive RMI methods such as getConnections without authentication, the results of which can be used to generate valid authentication tokens. These tokens can then be used to invoke administrative tasks within the application, such as disclosing password hashes."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://www.exploit-db.com/exploits/49621",
"url": "https://www.exploit-db.com/exploits/49621"
}
]
}

5
2021/28xxx/CVE-2021-28038.json
View File

@ -56,6 +56,11 @@
"url": "http://xenbits.xen.org/xsa/advisory-367.html",
"refsource": "MISC",
"name": "http://xenbits.xen.org/xsa/advisory-367.html"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20210305 Xen Security Advisory 367 v2 (CVE-2021-28038) - Linux: netback fails to honor grant mapping errors",
"url": "http://www.openwall.com/lists/oss-security/2021/03/05/1"
}
]
}

5
2021/28xxx/CVE-2021-28039.json
View File

@ -56,6 +56,11 @@
"url": "http://xenbits.xen.org/xsa/advisory-369.html",
"refsource": "MISC",
"name": "http://xenbits.xen.org/xsa/advisory-369.html"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20210305 Xen Security Advisory 369 v2 (CVE-2021-28039) - Linux: special config may crash when trying to map foreign pages",
"url": "http://www.openwall.com/lists/oss-security/2021/03/05/2"
}
]
}