admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-06 02:32:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2020-07-15 03:02:07 +00:00
parent 404bc8f323
commit c4bbb47246
No known key found for this signature in database
GPG Key ID: 5708902F06FEF743
93 changed files with 1756 additions and 1570 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

34
2019/10xxx/CVE-2019-10092.json
View File

@ -44,21 +44,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20190930 [SECURITY] [DLA 1900-2] apache2 regression update", "name": "[debian-lts-announce] 20190930 [SECURITY] [DLA 1900-2] apache2 regression update",
"url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00034.html" "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00034.html"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "BUGTRAQ", "refsource": "BUGTRAQ",
"name": "20191016 [SECURITY] [DSA 4509-3] apache2 security update", "name": "20191016 [SECURITY] [DSA 4509-3] apache2 security update",
@ -69,11 +59,6 @@
"name": "RHSA-2019:4126", "name": "RHSA-2019:4126",
"url": "https://access.redhat.com/errata/RHSA-2019:4126" "url": "https://access.redhat.com/errata/RHSA-2019:4126"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[httpd-users] 20200202 Re: [users@httpd] Small difference on error messages", "name": "[httpd-users] 20200202 Re: [users@httpd] Small difference on error messages",
@ -95,7 +80,24 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "MISC",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
} }
] ]
}, },

24
2019/10xxx/CVE-2019-10097.json
View File

@ -44,16 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2019:4126", "name": "RHSA-2019:4126",
@ -75,7 +65,19 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"refsource": "MISC",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
} }
] ]
}, },

44
2019/10xxx/CVE-2019-10192.json
View File

@ -50,26 +50,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10192",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10192",
"refsource": "CONFIRM"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4480", "name": "DSA-4480",
@ -131,7 +111,29 @@
"url": "https://access.redhat.com/errata/RHSA-2019:2630" "url": "https://access.redhat.com/errata/RHSA-2019:2630"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10192",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10192",
"refsource": "CONFIRM"
} }
] ]
}, },

44
2019/10xxx/CVE-2019-10193.json
View File

@ -50,26 +50,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10193",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10193",
"refsource": "CONFIRM"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4480", "name": "DSA-4480",
@ -106,7 +86,29 @@
"url": "https://security.gentoo.org/glsa/201908-04" "url": "https://security.gentoo.org/glsa/201908-04"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/4.0/00-RELEASENOTES"
},
{
"url": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES",
"refsource": "MISC",
"name": "https://raw.githubusercontent.com/antirez/redis/5.0/00-RELEASENOTES"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10193",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10193",
"refsource": "CONFIRM"
} }
] ]
}, },

44
2019/10xxx/CVE-2019-10246.json
View File

@ -61,31 +61,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546576",
"refsource": "CONFIRM",
"url": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546576"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190509-0003/",
"url": "https://security.netapp.com/advisory/ntap-20190509-0003/"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
@ -97,7 +77,29 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"name": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546576",
"refsource": "CONFIRM",
"url": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546576"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190509-0003/",
"url": "https://security.netapp.com/advisory/ntap-20190509-0003/"
} }
] ]
} }

44
2019/10xxx/CVE-2019-10247.json
View File

@ -69,16 +69,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546577",
"refsource": "CONFIRM",
"url": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546577"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190509-0003/",
"url": "https://security.netapp.com/advisory/ntap-20190509-0003/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[activemq-issues] 20190723 [jira] [Created] (AMQ-7249) Security Vulnerabilities in the ActiveMQ dependent jars.", "name": "[activemq-issues] 20190723 [jira] [Created] (AMQ-7249) Security Vulnerabilities in the ActiveMQ dependent jars.",
@ -89,11 +79,6 @@
"name": "[activemq-issues] 20190820 [jira] [Created] (AMQ-7279) Security Vulnerabilities in Libraries - jackson-databind-2.9.8.jar, tomcat-servlet-api-8.0.53.jar, tomcat-websocket-api-8.0.53.jar, zookeeper-3.4.6.jar, guava-18.0.jar, jetty-all-9.2.26.v20180806.jar, scala-library-2.11.0.jar", "name": "[activemq-issues] 20190820 [jira] [Created] (AMQ-7279) Security Vulnerabilities in Libraries - jackson-databind-2.9.8.jar, tomcat-servlet-api-8.0.53.jar, tomcat-websocket-api-8.0.53.jar, zookeeper-3.4.6.jar, guava-18.0.jar, jetty-all-9.2.26.v20180806.jar, scala-library-2.11.0.jar",
"url": "https://lists.apache.org/thread.html/053d9ce4d579b02203db18545fee5e33f35f2932885459b74d1e4272@%3Cissues.activemq.apache.org%3E" "url": "https://lists.apache.org/thread.html/053d9ce4d579b02203db18545fee5e33f35f2932885459b74d1e4272@%3Cissues.activemq.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities", "name": "[drill-dev] 20191021 [jira] [Created] (DRILL-7416) Updates required to dependencies to resolve potential security vulnerabilities",
@ -109,11 +94,6 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
@ -125,7 +105,29 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190509-0003/",
"url": "https://security.netapp.com/advisory/ntap-20190509-0003/"
},
{
"name": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546577",
"refsource": "CONFIRM",
"url": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=546577"
} }
] ]
} }

184
2019/11xxx/CVE-2019-11358.json
View File

@ -52,41 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_19_19",
"url": "https://www.synology.com/security/advisory/Synology_SA_19_19"
},
{
"url": "https://backdropcms.org/security/backdrop-sa-core-2019-009",
"refsource": "MISC",
"name": "https://backdropcms.org/security/backdrop-sa-core-2019-009"
},
{
"url": "https://www.drupal.org/sa-core-2019-006",
"refsource": "MISC",
"name": "https://www.drupal.org/sa-core-2019-006"
},
{
"url": "https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/",
"refsource": "MISC",
"name": "https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/"
},
{
"url": "https://snyk.io/vuln/SNYK-JS-JQUERY-174006",
"refsource": "MISC",
"name": "https://snyk.io/vuln/SNYK-JS-JQUERY-174006"
},
{
"url": "https://github.com/jquery/jquery/pull/4333",
"refsource": "MISC",
"name": "https://github.com/jquery/jquery/pull/4333"
},
{
"url": "https://github.com/jquery/jquery/commit/753d591aea698e57d6db58c9f722cd0808619b1b",
"refsource": "MISC",
"name": "https://github.com/jquery/jquery/commit/753d591aea698e57d6db58c9f722cd0808619b1b"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4434", "name": "DSA-4434",
@ -167,11 +132,6 @@
"name": "20190509 dotCMS v5.1.1 Vulnerabilities", "name": "20190509 dotCMS v5.1.1 Vulnerabilities",
"url": "https://seclists.org/bugtraq/2019/May/18" "url": "https://seclists.org/bugtraq/2019/May/18"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html",
"url": "http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html"
},
{ {
"refsource": "FULLDISC", "refsource": "FULLDISC",
"name": "20190510 dotCMS v5.1.1 HTML Injection & XSS Vulnerability", "name": "20190510 dotCMS v5.1.1 HTML Injection & XSS Vulnerability",
@ -197,11 +157,6 @@
"name": "[oss-security] 20190603 Django: CVE-2019-12308 AdminURLFieldWidget XSS (plus patched bundled jQuery for CVE-2019-11358)", "name": "[oss-security] 20190603 Django: CVE-2019-12308 AdminURLFieldWidget XSS (plus patched bundled jQuery for CVE-2019-11358)",
"url": "http://www.openwall.com/lists/oss-security/2019/06/03/2" "url": "http://www.openwall.com/lists/oss-security/2019/06/03/2"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html",
"url": "http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2019:1456", "name": "RHSA-2019:1456",
@ -217,16 +172,6 @@
"name": "20190612 [SECURITY] [DSA 4460-1] mediawiki security update", "name": "20190612 [SECURITY] [DSA 4460-1] mediawiki security update",
"url": "https://seclists.org/bugtraq/2019/Jun/12" "url": "https://seclists.org/bugtraq/2019/Jun/12"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"refsource": "MISC",
"name": "https://www.privacy-wise.com/mitigating-cve-2019-11358-in-old-versions-of-jquery/",
"url": "https://www.privacy-wise.com/mitigating-cve-2019-11358-in-old-versions-of-jquery/"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2019:1839", "name": "openSUSE-SU-2019:1839",
@ -252,11 +197,6 @@
"name": "RHSA-2019:2587", "name": "RHSA-2019:2587",
"url": "https://access.redhat.com/errata/RHSA-2019:2587" "url": "https://access.redhat.com/errata/RHSA-2019:2587"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0001/"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2019:3023", "name": "RHSA-2019:3023",
@ -267,11 +207,6 @@
"name": "RHSA-2019:3024", "name": "RHSA-2019:3024",
"url": "https://access.redhat.com/errata/RHSA-2019:3024" "url": "https://access.redhat.com/errata/RHSA-2019:3024"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -292,16 +227,6 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-08",
"url": "https://www.tenable.com/security/tns-2019-08"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
@ -312,21 +237,6 @@
"name": "[debian-lts-announce] 20200224 [SECURITY] [DLA 2118-1] otrs2 security update", "name": "[debian-lts-announce] 20200224 [SECURITY] [DLA 2118-1] otrs2 security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00024.html" "url": "https://lists.debian.org/debian-lts-announce/2020/02/msg00024.html"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html",
"url": "http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-02",
"url": "https://www.tenable.com/security/tns-2020-02"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[syncope-dev] 20200423 Jquery version on 2.1.x/2.0.x", "name": "[syncope-dev] 20200423 Jquery version on 2.1.x/2.0.x",
@ -362,13 +272,105 @@
"name": "[flink-issues] 20200520 [jira] [Closed] (FLINK-17675) Resolve CVE-2019-11358 from jquery", "name": "[flink-issues] 20200520 [jira] [Closed] (FLINK-17675) Resolve CVE-2019-11358 from jquery",
"url": "https://lists.apache.org/thread.html/r2baacab6e0acb5a2092eb46ae04fd6c3e8277b4fd79b1ffb7f3254fa@%3Cissues.flink.apache.org%3E" "url": "https://lists.apache.org/thread.html/r2baacab6e0acb5a2092eb46ae04fd6c3e8277b4fd79b1ffb7f3254fa@%3Cissues.flink.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[storm-dev] 20200708 [GitHub] [storm] Crim opened a new pull request #3305: [STORM-3553] Upgrade jQuery from 1.11.1 to 3.5.1", "name": "[storm-dev] 20200708 [GitHub] [storm] Crim opened a new pull request #3305: [STORM-3553] Upgrade jQuery from 1.11.1 to 3.5.1",
"url": "https://lists.apache.org/thread.html/r7d64895cc4dff84d0becfc572b20c0e4bf9bfa7b10c6f5f73e783734@%3Cdev.storm.apache.org%3E" "url": "https://lists.apache.org/thread.html/r7d64895cc4dff84d0becfc572b20c0e4bf9bfa7b10c6f5f73e783734@%3Cdev.storm.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html",
"url": "http://packetstormsecurity.com/files/152787/dotCMS-5.1.1-Vulnerable-Dependencies.html"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html",
"url": "http://packetstormsecurity.com/files/153237/RetireJS-CORS-Issue-Script-Execution.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-08",
"url": "https://www.tenable.com/security/tns-2019-08"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html",
"url": "http://packetstormsecurity.com/files/156743/OctoberCMS-Insecure-Dependencies.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_19_19",
"url": "https://www.synology.com/security/advisory/Synology_SA_19_19"
},
{
"url": "https://backdropcms.org/security/backdrop-sa-core-2019-009",
"refsource": "MISC",
"name": "https://backdropcms.org/security/backdrop-sa-core-2019-009"
},
{
"url": "https://www.drupal.org/sa-core-2019-006",
"refsource": "MISC",
"name": "https://www.drupal.org/sa-core-2019-006"
},
{
"url": "https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/",
"refsource": "MISC",
"name": "https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/"
},
{
"url": "https://snyk.io/vuln/SNYK-JS-JQUERY-174006",
"refsource": "MISC",
"name": "https://snyk.io/vuln/SNYK-JS-JQUERY-174006"
},
{
"url": "https://github.com/jquery/jquery/pull/4333",
"refsource": "MISC",
"name": "https://github.com/jquery/jquery/pull/4333"
},
{
"url": "https://github.com/jquery/jquery/commit/753d591aea698e57d6db58c9f722cd0808619b1b",
"refsource": "MISC",
"name": "https://github.com/jquery/jquery/commit/753d591aea698e57d6db58c9f722cd0808619b1b"
},
{
"refsource": "MISC",
"name": "https://www.privacy-wise.com/mitigating-cve-2019-11358-in-old-versions-of-jquery/",
"url": "https://www.privacy-wise.com/mitigating-cve-2019-11358-in-old-versions-of-jquery/"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0001/"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-02",
"url": "https://www.tenable.com/security/tns-2020-02"
} }
] ]
} }

84
2019/12xxx/CVE-2019-12086.json
View File

@ -52,26 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "http://russiansecurity.expert/2016/04/20/mysql-connect-file-read/",
"refsource": "MISC",
"name": "http://russiansecurity.expert/2016/04/20/mysql-connect-file-read/"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2326",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2326"
},
{
"refsource": "CONFIRM",
"name": "https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9",
"url": "https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[spark-reviews] 20190520 [GitHub] [spark] Fokko opened a new pull request #24646: Spark 27757", "name": "[spark-reviews] 20190520 [GitHub] [spark] Fokko opened a new pull request #24646: Spark 27757",
@ -92,16 +72,6 @@
"name": "20190527 [SECURITY] [DSA 4452-1] jackson-databind security update", "name": "20190527 [SECURITY] [DSA 4452-1] jackson-databind security update",
"url": "https://seclists.org/bugtraq/2019/May/68" "url": "https://seclists.org/bugtraq/2019/May/68"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190530-0003/",
"url": "https://security.netapp.com/advisory/ntap-20190530-0003/"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{ {
"refsource": "BID", "refsource": "BID",
"name": "109227", "name": "109227",
@ -177,11 +147,6 @@
"name": "RHSA-2019:3046", "name": "RHSA-2019:3046",
"url": "https://access.redhat.com/errata/RHSA-2019:3046" "url": "https://access.redhat.com/errata/RHSA-2019:3046"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -212,11 +177,6 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
@ -227,13 +187,55 @@
"name": "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", "name": "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1",
"url": "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E" "url": "https://lists.apache.org/thread.html/r204ba2a9ea750f38d789d2bb429cc0925ad6133deea7cbc3001d96b5@%3Csolr-user.lucene.apache.org%3E"
}, },
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190530-0003/",
"url": "https://security.netapp.com/advisory/ntap-20190530-0003/"
},
{
"url": "http://russiansecurity.expert/2016/04/20/mysql-connect-file-read/",
"refsource": "MISC",
"name": "http://russiansecurity.expert/2016/04/20/mysql-connect-file-read/"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2326",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2326"
},
{
"refsource": "CONFIRM",
"name": "https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9",
"url": "https://github.com/FasterXML/jackson/wiki/Jackson-Release-2.9.9"
} }
] ]
} }

74
2019/12xxx/CVE-2019-12384.json
View File

@ -52,41 +52,16 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://doyensec.com/research.html",
"refsource": "MISC",
"name": "https://doyensec.com/research.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/74b90a4...a977aad",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/74b90a4...a977aad"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20190621 [SECURITY] [DLA 1831-1] jackson-databind security update", "name": "[debian-lts-announce] 20190621 [SECURITY] [DLA 1831-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00019.html" "url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00019.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://lists.debian.org/debian-lts-announce/2019/06/msg00019.html",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00019.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190703-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190703-0002/"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2019:1820", "name": "RHSA-2019:1820",
"url": "https://access.redhat.com/errata/RHSA-2019:1820" "url": "https://access.redhat.com/errata/RHSA-2019:1820"
}, },
{
"refsource": "MISC",
"name": "https://blog.doyensec.com/2019/07/22/jackson-gadgets.html",
"url": "https://blog.doyensec.com/2019/07/22/jackson-gadgets.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomee-dev] 20190905 [GitHub] [tomee] asf-ci commented on issue #549: [TOMEE-2655] [7.1.x] Updates jackson-databind to 2.9.9.3 to mitigate CVE-2019-12384, CVE-2019-12814, CVE-2019-14379 and CVE-2019-14439", "name": "[tomee-dev] 20190905 [GitHub] [tomee] asf-ci commented on issue #549: [TOMEE-2655] [7.1.x] Updates jackson-databind to 2.9.9.3 to mitigate CVE-2019-12384, CVE-2019-12814, CVE-2019-14379 and CVE-2019-14439",
@ -202,11 +177,6 @@
"name": "RHSA-2019:2998", "name": "RHSA-2019:2998",
"url": "https://access.redhat.com/errata/RHSA-2019:2998" "url": "https://access.redhat.com/errata/RHSA-2019:2998"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -257,11 +227,6 @@
"name": "RHSA-2019:4352", "name": "RHSA-2019:4352",
"url": "https://access.redhat.com/errata/RHSA-2019:4352" "url": "https://access.redhat.com/errata/RHSA-2019:4352"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
@ -273,7 +238,44 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://doyensec.com/research.html",
"refsource": "MISC",
"name": "https://doyensec.com/research.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/74b90a4...a977aad",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/74b90a4...a977aad"
},
{
"refsource": "CONFIRM",
"name": "https://lists.debian.org/debian-lts-announce/2019/06/msg00019.html",
"url": "https://lists.debian.org/debian-lts-announce/2019/06/msg00019.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190703-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190703-0002/"
},
{
"refsource": "MISC",
"name": "https://blog.doyensec.com/2019/07/22/jackson-gadgets.html",
"url": "https://blog.doyensec.com/2019/07/22/jackson-gadgets.html"
} }
] ]
} }

14
2019/12xxx/CVE-2019-12402.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/308cc15f1f1dc53e97046fddbac240e6cd16de89a2746cf257be7f5b@%3Cdev.commons.apache.org%3E",
"url": "https://lists.apache.org/thread.html/308cc15f1f1dc53e97046fddbac240e6cd16de89a2746cf257be7f5b@%3Cdev.commons.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[creadur-commits] 20191022 [creadur-rat] branch master updated: RAT-258: Update to latest commons-compress to fix CVE-2019-12402", "name": "[creadur-commits] 20191022 [creadur-rat] branch master updated: RAT-258: Update to latest commons-compress to fix CVE-2019-12402",
@ -155,7 +150,14 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/308cc15f1f1dc53e97046fddbac240e6cd16de89a2746cf257be7f5b@%3Cdev.commons.apache.org%3E",
"url": "https://lists.apache.org/thread.html/308cc15f1f1dc53e97046fddbac240e6cd16de89a2746cf257be7f5b@%3Cdev.commons.apache.org%3E"
} }
] ]
}, },

24
2019/12xxx/CVE-2019-12415.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/13a54b6a03369cfb418a699180ffb83bd727320b6ddfec198b9b728e@%3Cannounce.apache.org%3E",
"url": "https://lists.apache.org/thread.html/13a54b6a03369cfb418a699180ffb83bd727320b6ddfec198b9b728e@%3Cannounce.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tika-user] 20191105 Is tika-parsers exposed to CVE-2019-12415", "name": "[tika-user] 20191105 Is tika-parsers exposed to CVE-2019-12415",
@ -64,11 +59,6 @@
"name": "[tika-user] 20191106 Re: Is tika-parsers exposed to CVE-2019-12415", "name": "[tika-user] 20191106 Re: Is tika-parsers exposed to CVE-2019-12415",
"url": "https://lists.apache.org/thread.html/d88b8823867033514d7ec05d66f88c70dc207604d3dcbd44fd88464c@%3Cuser.tika.apache.org%3E" "url": "https://lists.apache.org/thread.html/d88b8823867033514d7ec05d66f88c70dc207604d3dcbd44fd88464c@%3Cuser.tika.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1", "name": "[lucene-solr-user] 20200320 CVEs (vulnerabilities) that apply to Solr 8.4.1",
@ -80,7 +70,19 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/13a54b6a03369cfb418a699180ffb83bd727320b6ddfec198b9b728e@%3Cannounce.apache.org%3E",
"url": "https://lists.apache.org/thread.html/13a54b6a03369cfb418a699180ffb83bd727320b6ddfec198b9b728e@%3Cannounce.apache.org%3E"
} }
] ]
}, },

14
2019/12xxx/CVE-2019-12423.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "http://cxf.apache.org/security-advisories.data/CVE-2019-12423.txt.asc?version=1&modificationDate=1579178393000&api=v2",
"url": "http://cxf.apache.org/security-advisories.data/CVE-2019-12423.txt.asc?version=1&modificationDate=1579178393000&api=v2"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[announce] 20200116 [CVE-2019-12423] - Apache CXF OpenId Connect JWK Keys service returns private/secret credentials if configured with a jwk keystore", "name": "[announce] 20200116 [CVE-2019-12423] - Apache CXF OpenId Connect JWK Keys service returns private/secret credentials if configured with a jwk keystore",
@ -65,7 +60,14 @@
"url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E" "url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "http://cxf.apache.org/security-advisories.data/CVE-2019-12423.txt.asc?version=1&modificationDate=1579178393000&api=v2",
"url": "http://cxf.apache.org/security-advisories.data/CVE-2019-12423.txt.asc?version=1&modificationDate=1579178393000&api=v2"
} }
] ]
}, },

54
2019/12xxx/CVE-2019-12814.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://github.com/FasterXML/jackson-databind/issues/2341",
"url": "https://github.com/FasterXML/jackson-databind/issues/2341"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20190621 [SECURITY] [DLA 1831-1] jackson-databind security update", "name": "[debian-lts-announce] 20190621 [SECURITY] [DLA 1831-1] jackson-databind security update",
@ -97,11 +92,6 @@
"name": "[zookeeper-notifications] 20190624 [GitHub] [zookeeper] eolivelli commented on issue #1001: ZOOKEEPER-3441 OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814", "name": "[zookeeper-notifications] 20190624 [GitHub] [zookeeper] eolivelli commented on issue #1001: ZOOKEEPER-3441 OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814",
"url": "https://lists.apache.org/thread.html/8fe2983f6d9fee0aa737e4bd24483f8f5cf9b938b9adad0c4e79b2a4@%3Cnotifications.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/8fe2983f6d9fee0aa737e4bd24483f8f5cf9b938b9adad0c4e79b2a4@%3Cnotifications.zookeeper.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0006/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0006/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-issues] 20190708 [jira] [Commented] (ZOOKEEPER-3441) OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814", "name": "[zookeeper-issues] 20190708 [jira] [Commented] (ZOOKEEPER-3441) OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814",
@ -137,11 +127,6 @@
"name": "[zookeeper-issues] 20190713 [jira] [Updated] (ZOOKEEPER-3441) OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814", "name": "[zookeeper-issues] 20190713 [jira] [Updated] (ZOOKEEPER-3441) OWASP is flagging jackson-databind-2.9.9.jar for CVE-2019-12814",
"url": "https://lists.apache.org/thread.html/b0a2b2cca072650dbd5882719976c3d353972c44f6736ddf0ba95209@%3Cissues.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/b0a2b2cca072650dbd5882719976c3d353972c44f6736ddf0ba95209@%3Cissues.zookeeper.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[accumulo-commits] 20190723 [accumulo] branch 2.0 updated: Fix CVE-2019-12814 Use jackson-databind 2.9.9.1", "name": "[accumulo-commits] 20190723 [accumulo] branch 2.0 updated: Fix CVE-2019-12814 Use jackson-databind 2.9.9.1",
@ -262,11 +247,6 @@
"name": "RHSA-2019:3046", "name": "RHSA-2019:3046",
"url": "https://access.redhat.com/errata/RHSA-2019:3046" "url": "https://access.redhat.com/errata/RHSA-2019:3046"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -307,18 +287,40 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/rca37935d661f4689cb4119f1b3b224413b22be161b678e6e6ce0c69b@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/rca37935d661f4689cb4119f1b3b224413b22be161b678e6e6ce0c69b@%3Ccommits.nifi.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://github.com/FasterXML/jackson-databind/issues/2341",
"url": "https://github.com/FasterXML/jackson-databind/issues/2341"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190625-0006/",
"url": "https://security.netapp.com/advisory/ntap-20190625-0006/"
} }
] ]
} }

24
2019/12xxx/CVE-2019-12973.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503"
},
{
"url": "https://github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3"
},
{ {
"refsource": "BID", "refsource": "BID",
"name": "108900", "name": "108900",
@ -83,7 +73,19 @@
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00008.html" "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00008.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/pull/1185/commits/cbe7384016083eac16078b359acd7a842253d503"
},
{
"url": "https://github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/commit/8ee335227bbcaf1614124046aa25e53d67b11ec3"
} }
] ]
} }

14
2019/13xxx/CVE-2019-13990.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/quartz-scheduler/quartz/issues/467",
"url": "https://github.com/quartz-scheduler/quartz/issues/467"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomee-dev] 20190830 Re: Quartz CVE-2019-13990", "name": "[tomee-dev] 20190830 Re: Quartz CVE-2019-13990",
@ -88,7 +83,14 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://github.com/quartz-scheduler/quartz/issues/467",
"url": "https://github.com/quartz-scheduler/quartz/issues/467"
} }
] ]
} }

54
2019/14xxx/CVE-2019-14379.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2387",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2387"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20190812 [SECURITY] [DLA 1879-1] jackson-databind security update", "name": "[debian-lts-announce] 20190812 [SECURITY] [DLA 1879-1] jackson-databind security update",
@ -77,11 +67,6 @@
"name": "[ambari-commits] 20190813 [ambari] branch trunk updated: AMBARI-25352 : Upgrade fasterxml jackson dependency due to CVE-2019-14379(trunk) (#3067)", "name": "[ambari-commits] 20190813 [ambari] branch trunk updated: AMBARI-25352 : Upgrade fasterxml jackson dependency due to CVE-2019-14379(trunk) (#3067)",
"url": "https://lists.apache.org/thread.html/f17f63b0f8a57e4a5759e01d25cffc0548f0b61ff5c6bfd704ad2f2a@%3Ccommits.ambari.apache.org%3E" "url": "https://lists.apache.org/thread.html/f17f63b0f8a57e4a5759e01d25cffc0548f0b61ff5c6bfd704ad2f2a@%3Ccommits.ambari.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190814-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190814-0001/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[pulsar-commits] 20190822 [GitHub] [pulsar] massakam opened a new pull request #5011: [security] Upgrade jackson-databind", "name": "[pulsar-commits] 20190822 [GitHub] [pulsar] massakam opened a new pull request #5011: [security] Upgrade jackson-databind",
@ -247,11 +232,6 @@
"name": "RHSA-2019:3046", "name": "RHSA-2019:3046",
"url": "https://access.redhat.com/errata/RHSA-2019:3046" "url": "https://access.redhat.com/errata/RHSA-2019:3046"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -297,11 +277,6 @@
"name": "RHSA-2019:3901", "name": "RHSA-2019:3901",
"url": "https://access.redhat.com/errata/RHSA-2019:3901" "url": "https://access.redhat.com/errata/RHSA-2019:3901"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2020:0727", "name": "RHSA-2020:0727",
@ -313,7 +288,34 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2387",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2387"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190814-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190814-0001/"
} }
] ]
} }

64
2019/14xxx/CVE-2019-14439.json
View File

@ -52,31 +52,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2389",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2389"
},
{
"url": "https://github.com/FasterXML/jackson-databind/commit/ad418eeb974e357f2797aef64aa0e3ffaaa6125b",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/commit/ad418eeb974e357f2797aef64aa0e3ffaaa6125b"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20190812 [SECURITY] [DLA 1879-1] jackson-databind security update", "name": "[debian-lts-announce] 20190812 [SECURITY] [DLA 1879-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/08/msg00011.html" "url": "https://lists.debian.org/debian-lts-announce/2019/08/msg00011.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190814-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190814-0001/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomee-dev] 20190905 [GitHub] [tomee] asf-ci commented on issue #549: [TOMEE-2655] [7.1.x] Updates jackson-databind to 2.9.9.3 to mitigate CVE-2019-12384, CVE-2019-12814, CVE-2019-14379 and CVE-2019-14439", "name": "[tomee-dev] 20190905 [GitHub] [tomee] asf-ci commented on issue #549: [TOMEE-2655] [7.1.x] Updates jackson-databind to 2.9.9.3 to mitigate CVE-2019-12384, CVE-2019-12814, CVE-2019-14379 and CVE-2019-14439",
@ -147,11 +127,6 @@
"name": "20191007 [SECURITY] [DSA 4542-1] jackson-databind security update", "name": "20191007 [SECURITY] [DSA 4542-1] jackson-databind security update",
"url": "https://seclists.org/bugtraq/2019/Oct/6" "url": "https://seclists.org/bugtraq/2019/Oct/6"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -177,11 +152,6 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20200123 svn commit: r1873083 - /nifi/site/trunk/security.html",
@ -193,7 +163,39 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.1...jackson-databind-2.9.9.2"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190814-0001/",
"url": "https://security.netapp.com/advisory/ntap-20190814-0001/"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2389",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2389"
},
{
"url": "https://github.com/FasterXML/jackson-databind/commit/ad418eeb974e357f2797aef64aa0e3ffaaa6125b",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/commit/ad418eeb974e357f2797aef64aa0e3ffaaa6125b"
} }
] ]
} }

74
2019/14xxx/CVE-2019-14540.json
View File

@ -52,21 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2449",
"url": "https://github.com/FasterXML/jackson-databind/issues/2449"
},
{
"refsource": "CONFIRM",
"name": "https://github.com/FasterXML/jackson-databind/blob/master/release-notes/VERSION-2.x",
"url": "https://github.com/FasterXML/jackson-databind/blob/master/release-notes/VERSION-2.x"
},
{
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2410",
"url": "https://github.com/FasterXML/jackson-databind/issues/2410"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tinkerpop-commits] 20190924 [GitHub] [tinkerpop] justinchuch opened a new pull request #1200: Upgrade jackson due to CVE issues", "name": "[tinkerpop-commits] 20190924 [GitHub] [tinkerpop] justinchuch opened a new pull request #1200: Upgrade jackson due to CVE issues",
@ -107,11 +92,6 @@
"name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update", "name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html" "url": "https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191004-0002/",
"url": "https://security.netapp.com/advisory/ntap-20191004-0002/"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4542", "name": "DSA-4542",
@ -127,11 +107,6 @@
"name": "FEDORA-2019-b171554877", "name": "FEDORA-2019-b171554877",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -162,11 +137,6 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2020:0164", "name": "RHSA-2020:0164",
@ -197,18 +167,50 @@
"name": "RHSA-2020:0445", "name": "RHSA-2020:0445",
"url": "https://access.redhat.com/errata/RHSA-2020:0445" "url": "https://access.redhat.com/errata/RHSA-2020:0445"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[nifi-commits] 20200421 svn commit: r1876802 - /nifi/site/trunk/registry-security.html", "name": "[nifi-commits] 20200421 svn commit: r1876802 - /nifi/site/trunk/registry-security.html",
"url": "https://lists.apache.org/thread.html/r8aaf4ee16bbaf6204731d4770d96ebb34b258cd79b491f9cdd7f2540@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/r8aaf4ee16bbaf6204731d4770d96ebb34b258cd79b491f9cdd7f2540@%3Ccommits.nifi.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2449",
"url": "https://github.com/FasterXML/jackson-databind/issues/2449"
},
{
"refsource": "CONFIRM",
"name": "https://github.com/FasterXML/jackson-databind/blob/master/release-notes/VERSION-2.x",
"url": "https://github.com/FasterXML/jackson-databind/blob/master/release-notes/VERSION-2.x"
},
{
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2410",
"url": "https://github.com/FasterXML/jackson-databind/issues/2410"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191004-0002/",
"url": "https://security.netapp.com/advisory/ntap-20191004-0002/"
} }
] ]
} }

8
2019/14xxx/CVE-2019-14862.json
View File

@ -44,6 +44,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14862", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14862",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14862", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14862",
@ -53,9 +58,6 @@
"url": "https://snyk.io/vuln/npm:knockout:20180213", "url": "https://snyk.io/vuln/npm:knockout:20180213",
"refsource": "MISC", "refsource": "MISC",
"name": "https://snyk.io/vuln/npm:knockout:20180213" "name": "https://snyk.io/vuln/npm:knockout:20180213"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

18
2019/14xxx/CVE-2019-14893.json
View File

@ -55,6 +55,16 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "REDHAT",
"name": "RHSA-2020:0729",
"url": "https://access.redhat.com/errata/RHSA-2020:0729"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14893", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14893",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14893", "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14893",
@ -65,18 +75,10 @@
"name": "https://github.com/FasterXML/jackson-databind/issues/2469", "name": "https://github.com/FasterXML/jackson-databind/issues/2469",
"refsource": "MISC" "refsource": "MISC"
}, },
{
"refsource": "REDHAT",
"name": "RHSA-2020:0729",
"url": "https://access.redhat.com/errata/RHSA-2020:0729"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200327-0006/", "name": "https://security.netapp.com/advisory/ntap-20200327-0006/",
"url": "https://security.netapp.com/advisory/ntap-20200327-0006/" "url": "https://security.netapp.com/advisory/ntap-20200327-0006/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

34
2019/16xxx/CVE-2019-16056.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://bugs.python.org/issue34155",
"refsource": "MISC",
"name": "https://bugs.python.org/issue34155"
},
{
"url": "https://github.com/python/cpython/commit/8cb65d1381b027f0b09ee36bfed7f35bb4dec9a9",
"refsource": "MISC",
"name": "https://github.com/python/cpython/commit/8cb65d1381b027f0b09ee36bfed7f35bb4dec9a9"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2019-4954d8773c", "name": "FEDORA-2019-4954d8773c",
@ -92,11 +82,6 @@
"name": "FEDORA-2019-2b1f72899a", "name": "FEDORA-2019-2b1f72899a",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E2HP37NUVLQSBW3J735A2DQDOZ4ZGBLY/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E2HP37NUVLQSBW3J735A2DQDOZ4ZGBLY/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190926-0005/",
"url": "https://security.netapp.com/advisory/ntap-20190926-0005/"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4151-1", "name": "USN-4151-1",
@ -203,7 +188,24 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://bugs.python.org/issue34155",
"refsource": "MISC",
"name": "https://bugs.python.org/issue34155"
},
{
"url": "https://github.com/python/cpython/commit/8cb65d1381b027f0b09ee36bfed7f35bb4dec9a9",
"refsource": "MISC",
"name": "https://github.com/python/cpython/commit/8cb65d1381b027f0b09ee36bfed7f35bb4dec9a9"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190926-0005/",
"url": "https://security.netapp.com/advisory/ntap-20190926-0005/"
} }
] ]
} }

44
2019/16xxx/CVE-2019-16335.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2449",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2449"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tinkerpop-commits] 20190924 [GitHub] [tinkerpop] justinchuch opened a new pull request #1200: Upgrade jackson due to CVE issues", "name": "[tinkerpop-commits] 20190924 [GitHub] [tinkerpop] justinchuch opened a new pull request #1200: Upgrade jackson due to CVE issues",
@ -92,11 +87,6 @@
"name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update", "name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html" "url": "https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191004-0002/",
"url": "https://security.netapp.com/advisory/ntap-20191004-0002/"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4542", "name": "DSA-4542",
@ -112,11 +102,6 @@
"name": "FEDORA-2019-b171554877", "name": "FEDORA-2019-b171554877",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/"
}, },
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -147,11 +132,6 @@
"name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html", "name": "[nifi-commits] 20191113 svn commit: r1869773 - /nifi/site/trunk/security.html",
"url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E" "url": "https://lists.apache.org/thread.html/bcce5a9c532b386c68dab2f6b3ce8b0cc9b950ec551766e76391caa3@%3Ccommits.nifi.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2020:0164", "name": "RHSA-2020:0164",
@ -193,7 +173,29 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2449",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2449"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191004-0002/",
"url": "https://security.netapp.com/advisory/ntap-20191004-0002/"
} }
] ]
} }

54
2019/16xxx/CVE-2019-16935.json
View File

@ -52,26 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://bugs.python.org/issue38243",
"refsource": "MISC",
"name": "https://bugs.python.org/issue38243"
},
{
"url": "https://github.com/python/cpython/pull/16373",
"refsource": "MISC",
"name": "https://github.com/python/cpython/pull/16373"
},
{
"url": "https://github.com/python/cpython/blob/e007860b8b3609ce0bc62b1780efaa06241520bd/Lib/DocXMLRPCServer.py#L213",
"refsource": "MISC",
"name": "https://github.com/python/cpython/blob/e007860b8b3609ce0bc62b1780efaa06241520bd/Lib/DocXMLRPCServer.py#L213"
},
{
"url": "https://github.com/python/cpython/blob/35c0809158be7feae4c4f877a08b93baea2d8291/Lib/xmlrpc/server.py#L897",
"refsource": "MISC",
"name": "https://github.com/python/cpython/blob/35c0809158be7feae4c4f877a08b93baea2d8291/Lib/xmlrpc/server.py#L897"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4151-1", "name": "USN-4151-1",
@ -82,11 +62,6 @@
"name": "USN-4151-2", "name": "USN-4151-2",
"url": "https://usn.ubuntu.com/4151-2/" "url": "https://usn.ubuntu.com/4151-2/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0004/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0004/"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2019:2389", "name": "openSUSE-SU-2019:2389",
@ -153,7 +128,34 @@
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00040.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://bugs.python.org/issue38243",
"refsource": "MISC",
"name": "https://bugs.python.org/issue38243"
},
{
"url": "https://github.com/python/cpython/pull/16373",
"refsource": "MISC",
"name": "https://github.com/python/cpython/pull/16373"
},
{
"url": "https://github.com/python/cpython/blob/e007860b8b3609ce0bc62b1780efaa06241520bd/Lib/DocXMLRPCServer.py#L213",
"refsource": "MISC",
"name": "https://github.com/python/cpython/blob/e007860b8b3609ce0bc62b1780efaa06241520bd/Lib/DocXMLRPCServer.py#L213"
},
{
"url": "https://github.com/python/cpython/blob/35c0809158be7feae4c4f877a08b93baea2d8291/Lib/xmlrpc/server.py#L897",
"refsource": "MISC",
"name": "https://github.com/python/cpython/blob/35c0809158be7feae4c4f877a08b93baea2d8291/Lib/xmlrpc/server.py#L897"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0004/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0004/"
} }
] ]
} }

54
2019/16xxx/CVE-2019-16942.json
View File

@ -52,21 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2478",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2478"
},
{
"refsource": "MISC",
"name": "https://issues.apache.org/jira/browse/GEODE-7255",
"url": "https://issues.apache.org/jira/browse/GEODE-7255"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update", "name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update",
@ -97,11 +82,6 @@
"name": "FEDORA-2019-b171554877", "name": "FEDORA-2019-b171554877",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0006/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -132,11 +112,6 @@
"name": "[geode-issues] 20191230 [jira] [Closed] (GEODE-7255) Need to pick up CVE-2019-16942", "name": "[geode-issues] 20191230 [jira] [Closed] (GEODE-7255) Need to pick up CVE-2019-16942",
"url": "https://lists.apache.org/thread.html/a430dbc9be874c41314cc69e697384567a9a24025e819d9485547954@%3Cissues.geode.apache.org%3E" "url": "https://lists.apache.org/thread.html/a430dbc9be874c41314cc69e697384567a9a24025e819d9485547954@%3Cissues.geode.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2020:0164", "name": "RHSA-2020:0164",
@ -162,13 +137,40 @@
"name": "RHSA-2020:0445", "name": "RHSA-2020:0445",
"url": "https://access.redhat.com/errata/RHSA-2020:0445" "url": "https://access.redhat.com/errata/RHSA-2020:0445"
}, },
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2478",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2478"
},
{
"refsource": "MISC",
"name": "https://issues.apache.org/jira/browse/GEODE-7255",
"url": "https://issues.apache.org/jira/browse/GEODE-7255"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0006/"
} }
] ]
} }

44
2019/16xxx/CVE-2019-16943.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2478",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2478"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update", "name": "[debian-lts-announce] 20191002 [SECURITY] [DLA 1943-1] jackson-databind security update",
@ -82,11 +72,6 @@
"name": "FEDORA-2019-b171554877", "name": "FEDORA-2019-b171554877",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0006/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -122,11 +107,6 @@
"name": "[iceberg-commits] 20191028 [incubator-iceberg] branch master updated: Update Jackson to 2.10.0 for CVE-2019-16943 (#583)", "name": "[iceberg-commits] 20191028 [incubator-iceberg] branch master updated: Update Jackson to 2.10.0 for CVE-2019-16943 (#583)",
"url": "https://lists.apache.org/thread.html/5ec8d8d485c2c8ac55ea425f4cd96596ef37312532712639712ebcdd@%3Ccommits.iceberg.apache.org%3E" "url": "https://lists.apache.org/thread.html/5ec8d8d485c2c8ac55ea425f4cd96596ef37312532712639712ebcdd@%3Ccommits.iceberg.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)", "name": "[druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)",
@ -157,13 +137,35 @@
"name": "RHSA-2020:0445", "name": "RHSA-2020:0445",
"url": "https://access.redhat.com/errata/RHSA-2020:0445" "url": "https://access.redhat.com/errata/RHSA-2020:0445"
}, },
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2478",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2478"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0006/"
} }
] ]
} }

38
2019/17xxx/CVE-2019-17091.json
View File

@ -52,6 +52,26 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"url": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=548244", "url": "https://bugs.eclipse.org/bugs/show_bug.cgi?id=548244",
"refsource": "MISC", "refsource": "MISC",
@ -101,24 +121,6 @@
"url": "https://github.com/javaserverfaces/mojarra/commit/f61935cd39f34329fbf27b1972a506fbdd0ab4d4", "url": "https://github.com/javaserverfaces/mojarra/commit/f61935cd39f34329fbf27b1972a506fbdd0ab4d4",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/javaserverfaces/mojarra/commit/f61935cd39f34329fbf27b1972a506fbdd0ab4d4" "name": "https://github.com/javaserverfaces/mojarra/commit/f61935cd39f34329fbf27b1972a506fbdd0ab4d4"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

44
2019/17xxx/CVE-2019-17267.json
View File

@ -52,21 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2460",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2460"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.3...jackson-databind-2.9.10",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.3...jackson-databind-2.9.10"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0006/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities", "name": "[drill-dev] 20191017 Dependencies used by Drill contain known vulnerabilities",
@ -92,11 +77,6 @@
"name": "[debian-lts-announce] 20191210 [SECURITY] [DLA 2030-1] jackson-databind security update", "name": "[debian-lts-announce] 20191210 [SECURITY] [DLA 2030-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00013.html" "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00013.html"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)", "name": "[druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)",
@ -133,7 +113,29 @@
"url": "https://lists.apache.org/thread.html/r9d727fc681fb3828794acbefcaee31393742b4d73a29461ccd9597a8@%3Cdev.skywalking.apache.org%3E" "url": "https://lists.apache.org/thread.html/r9d727fc681fb3828794acbefcaee31393742b4d73a29461ccd9597a8@%3Cdev.skywalking.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191017-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191017-0006/"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2460",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2460"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.3...jackson-databind-2.9.10",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.9.3...jackson-databind-2.9.10"
} }
] ]
} }

54
2019/17xxx/CVE-2019-17359.json
View File

@ -52,26 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.bouncycastle.org/releasenotes.html",
"refsource": "MISC",
"name": "https://www.bouncycastle.org/releasenotes.html"
},
{
"url": "https://www.bouncycastle.org/latest_releases.html",
"refsource": "MISC",
"name": "https://www.bouncycastle.org/latest_releases.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191024-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191024-0006/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomee-commits] 20200320 [jira] [Created] (TOMEE-2788) TomEE plus is affected by CVE-2019-17359 (BDSA-2019-3168) vulnerability", "name": "[tomee-commits] 20200320 [jira] [Created] (TOMEE-2788) TomEE plus is affected by CVE-2019-17359 (BDSA-2019-3168) vulnerability",
@ -102,11 +82,6 @@
"name": "[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2788) TomEE plus is affected by CVE-2019-17359 (BDSA-2019-3168) vulnerability", "name": "[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2788) TomEE plus is affected by CVE-2019-17359 (BDSA-2019-3168) vulnerability",
"url": "https://lists.apache.org/thread.html/re60f980c092ada4bfe236dcfef8b6ca3e8f3b150fc0f51b8cc13d59d@%3Ccommits.tomee.apache.org%3E" "url": "https://lists.apache.org/thread.html/re60f980c092ada4bfe236dcfef8b6ca3e8f3b150fc0f51b8cc13d59d@%3Ccommits.tomee.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomee-commits] 20200519 [jira] [Updated] (TOMEE-2788) TomEE plus is affected by CVE-2019-17359 (BDSA-2019-3168) vulnerability", "name": "[tomee-commits] 20200519 [jira] [Updated] (TOMEE-2788) TomEE plus is affected by CVE-2019-17359 (BDSA-2019-3168) vulnerability",
@ -118,7 +93,34 @@
"url": "https://lists.apache.org/thread.html/r79b6a6aa0dd1aeb57bd253d94794bc96f1ec005953c4bd5414cc0db0@%3Ccommits.tomee.apache.org%3E" "url": "https://lists.apache.org/thread.html/r79b6a6aa0dd1aeb57bd253d94794bc96f1ec005953c4bd5414cc0db0@%3Ccommits.tomee.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.bouncycastle.org/releasenotes.html",
"refsource": "MISC",
"name": "https://www.bouncycastle.org/releasenotes.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://www.bouncycastle.org/latest_releases.html",
"refsource": "MISC",
"name": "https://www.bouncycastle.org/latest_releases.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191024-0006/",
"url": "https://security.netapp.com/advisory/ntap-20191024-0006/"
} }
] ]
} }

44
2019/17xxx/CVE-2019-17531.json
View File

@ -52,21 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2498",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2498"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191024-0005/",
"url": "https://security.netapp.com/advisory/ntap-20191024-0005/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[pulsar-commits] 20191127 [GitHub] [pulsar] massakam opened a new pull request #5758: Bump jackson libraries to 2.10.1", "name": "[pulsar-commits] 20191127 [GitHub] [pulsar] massakam opened a new pull request #5758: Bump jackson libraries to 2.10.1",
@ -82,11 +67,6 @@
"name": "[debian-lts-announce] 20191210 [SECURITY] [DLA 2030-1] jackson-databind security update", "name": "[debian-lts-announce] 20191210 [SECURITY] [DLA 2030-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00013.html" "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00013.html"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)", "name": "[druid-commits] 20200115 [druid] branch 0.17.0 updated: Suppress CVE-2019-20330 for htrace-core-4.0.1 (#9189) (#9191)",
@ -117,13 +97,35 @@
"name": "RHSA-2020:0445", "name": "RHSA-2020:0445",
"url": "https://access.redhat.com/errata/RHSA-2020:0445" "url": "https://access.redhat.com/errata/RHSA-2020:0445"
}, },
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2498",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2498"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20191024-0005/",
"url": "https://security.netapp.com/advisory/ntap-20191024-0005/"
} }
] ]
} }

8
2019/17xxx/CVE-2019-17560.json
View File

@ -44,13 +44,15 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r354d7654efa1050539fe56a3257696d1faeea4f3f9b633c29ec89609%40%3Cdev.netbeans.apache.org%3E", "name": "https://lists.apache.org/thread.html/r354d7654efa1050539fe56a3257696d1faeea4f3f9b633c29ec89609%40%3Cdev.netbeans.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r354d7654efa1050539fe56a3257696d1faeea4f3f9b633c29ec89609%40%3Cdev.netbeans.apache.org%3E" "url": "https://lists.apache.org/thread.html/r354d7654efa1050539fe56a3257696d1faeea4f3f9b633c29ec89609%40%3Cdev.netbeans.apache.org%3E"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

8
2019/17xxx/CVE-2019-17561.json
View File

@ -44,13 +44,15 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"name": "https://lists.apache.org/thread.html/rb218aa720fc525f63d91761fbf67854f454ce7a697dbbee2001ae8b1%40%3Cdev.netbeans.apache.org%3E", "name": "https://lists.apache.org/thread.html/rb218aa720fc525f63d91761fbf67854f454ce7a697dbbee2001ae8b1%40%3Cdev.netbeans.apache.org%3E",
"url": "https://lists.apache.org/thread.html/rb218aa720fc525f63d91761fbf67854f454ce7a697dbbee2001ae8b1%40%3Cdev.netbeans.apache.org%3E" "url": "https://lists.apache.org/thread.html/rb218aa720fc525f63d91761fbf67854f454ce7a697dbbee2001ae8b1%40%3Cdev.netbeans.apache.org%3E"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

34
2019/17xxx/CVE-2019-17563.json
View File

@ -50,11 +50,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/8b4c1db8300117b28a0f3f743c0b9e3f964687a690cdf9662a884bbd%40%3Cannounce.tomcat.apache.org%3E",
"url": "https://lists.apache.org/thread.html/8b4c1db8300117b28a0f3f743c0b9e3f964687a690cdf9662a884bbd%40%3Cannounce.tomcat.apache.org%3E"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4596", "name": "DSA-4596",
@ -65,11 +60,6 @@
"name": "20191229 [SECURITY] [DSA 4596-1] tomcat8 security update", "name": "20191229 [SECURITY] [DSA 4596-1] tomcat8 security update",
"url": "https://seclists.org/bugtraq/2019/Dec/43" "url": "https://seclists.org/bugtraq/2019/Dec/43"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200107-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200107-0001/"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2020:0038", "name": "openSUSE-SU-2020:0038",
@ -115,11 +105,6 @@
"name": "GLSA-202003-43", "name": "GLSA-202003-43",
"url": "https://security.gentoo.org/glsa/202003-43" "url": "https://security.gentoo.org/glsa/202003-43"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4680", "name": "DSA-4680",
@ -130,13 +115,30 @@
"name": "[debian-lts-announce] 20200528 [SECURITY] [DLA 2209-1] tomcat8 security update", "name": "[debian-lts-announce] 20200528 [SECURITY] [DLA 2209-1] tomcat8 security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00026.html" "url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00026.html"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[cxf-issues] 20200618 [jira] [Created] (FEDIZ-249) Relying party rejects a valid security token and redirects back to ADFS when using Fediz 1.4.6 with Tomcat 8.5.56", "name": "[cxf-issues] 20200618 [jira] [Created] (FEDIZ-249) Relying party rejects a valid security token and redirects back to ADFS when using Fediz 1.4.6 with Tomcat 8.5.56",
"url": "https://lists.apache.org/thread.html/reb9a66f176df29b9a832caa95ebd9ffa3284e8f4922ec4fa3ad8eb2e@%3Cissues.cxf.apache.org%3E" "url": "https://lists.apache.org/thread.html/reb9a66f176df29b9a832caa95ebd9ffa3284e8f4922ec4fa3ad8eb2e@%3Cissues.cxf.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/8b4c1db8300117b28a0f3f743c0b9e3f964687a690cdf9662a884bbd%40%3Cannounce.tomcat.apache.org%3E",
"url": "https://lists.apache.org/thread.html/8b4c1db8300117b28a0f3f743c0b9e3f964687a690cdf9662a884bbd%40%3Cannounce.tomcat.apache.org%3E"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200107-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200107-0001/"
} }
] ]
}, },

14
2019/17xxx/CVE-2019-17569.json
View File

@ -75,11 +75,6 @@
"name": "[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2790) TomEE plus(7.0.7) is affected by CVE-2020-1935 & CVE-2019-17569 vulnerabilities", "name": "[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2790) TomEE plus(7.0.7) is affected by CVE-2020-1935 & CVE-2019-17569 vulnerabilities",
"url": "https://lists.apache.org/thread.html/r7bc994c965a34876bd94d5ff15b4e1e30b6220a15eb9b47c81915b78@%3Ccommits.tomee.apache.org%3E" "url": "https://lists.apache.org/thread.html/r7bc994c965a34876bd94d5ff15b4e1e30b6220a15eb9b47c81915b78@%3Ccommits.tomee.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200327-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200327-0005/"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4673", "name": "DSA-4673",
@ -91,7 +86,14 @@
"url": "https://www.debian.org/security/2020/dsa-4680" "url": "https://www.debian.org/security/2020/dsa-4680"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200327-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200327-0005/"
} }
] ]
}, },

34
2019/17xxx/CVE-2019-17571.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/eea03d504b36e8f870e8321d908e1def1addda16adda04327fe7c125%40%3Cdev.logging.apache.org%3E",
"url": "https://lists.apache.org/thread.html/eea03d504b36e8f870e8321d908e1def1addda16adda04327fe7c125%40%3Cdev.logging.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[activemq-issues] 20191226 [jira] [Created] (AMQ-7370) log4j 1.2 version used by AMQ 5.15.10 / 5.15.11 is vulnerable to CVE-2019-17571", "name": "[activemq-issues] 20191226 [jira] [Created] (AMQ-7370) log4j 1.2 version used by AMQ 5.15.10 / 5.15.11 is vulnerable to CVE-2019-17571",
@ -154,11 +149,6 @@
"name": "[tika-dev] 20200108 [jira] [Commented] (TIKA-3019) [9.8] [CVE-2019-17571] [tika-app] [1.23]", "name": "[tika-dev] 20200108 [jira] [Commented] (TIKA-3019) [9.8] [CVE-2019-17571] [tika-app] [1.23]",
"url": "https://lists.apache.org/thread.html/rc1eaed7f7d774d5d02f66e49baced31e04827a1293d61a70bd003ca7@%3Cdev.tika.apache.org%3E" "url": "https://lists.apache.org/thread.html/rc1eaed7f7d774d5d02f66e49baced31e04827a1293d61a70bd003ca7@%3Cdev.tika.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200110-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200110-0001/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tika-dev] 20200110 [jira] [Commented] (TIKA-3019) [9.8] [CVE-2019-17571] [tika-app] [1.23]", "name": "[tika-dev] 20200110 [jira] [Commented] (TIKA-3019) [9.8] [CVE-2019-17571] [tika-app] [1.23]",
@ -304,11 +294,6 @@
"name": "[druid-commits] 20200406 [GitHub] [druid] ccaominh commented on issue #9579: Add Apache Ranger Authorization", "name": "[druid-commits] 20200406 [GitHub] [druid] ccaominh commented on issue #9579: Add Apache Ranger Authorization",
"url": "https://lists.apache.org/thread.html/r8890b8f18f1de821595792b58b968a89692a255bc20d86d395270740@%3Ccommits.druid.apache.org%3E" "url": "https://lists.apache.org/thread.html/r8890b8f18f1de821595792b58b968a89692a255bc20d86d395270740@%3Ccommits.druid.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-commits] 20200504 [zookeeper] branch master updated: ZOOKEEPER-3817: suppress log4j SmtpAppender related CVE-2020-9488", "name": "[zookeeper-commits] 20200504 [zookeeper] branch master updated: ZOOKEEPER-3817: suppress log4j SmtpAppender related CVE-2020-9488",
@ -344,6 +329,11 @@
"name": "[kafka-jira] 20200602 [GitHub] [kafka] dongjinleekr commented on pull request #7898: KAFKA-9366: please consider upgrade log4j to log4j2 due to critical security problem CVE-2019-17571", "name": "[kafka-jira] 20200602 [GitHub] [kafka] dongjinleekr commented on pull request #7898: KAFKA-9366: please consider upgrade log4j to log4j2 due to critical security problem CVE-2019-17571",
"url": "https://lists.apache.org/thread.html/r71e26f9c2d5826c6f95ad60f7d052d75e1e70b0d2dd853db6fc26d5f@%3Cjira.kafka.apache.org%3E" "url": "https://lists.apache.org/thread.html/r71e26f9c2d5826c6f95ad60f7d052d75e1e70b0d2dd853db6fc26d5f@%3Cjira.kafka.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[kafka-jira] 20200624 [GitHub] [kafka] dongjinleekr commented on pull request #7898: KAFKA-9366: please consider upgrade log4j to log4j2 due to critical security problem CVE-2019-17571", "name": "[kafka-jira] 20200624 [GitHub] [kafka] dongjinleekr commented on pull request #7898: KAFKA-9366: please consider upgrade log4j to log4j2 due to critical security problem CVE-2019-17571",
@ -355,7 +345,19 @@
"url": "https://lists.apache.org/thread.html/r7a1acc95373105169bd44df710c2f462cad31fb805364d2958a5ee03@%3Cjira.kafka.apache.org%3E" "url": "https://lists.apache.org/thread.html/r7a1acc95373105169bd44df710c2f462cad31fb805364d2958a5ee03@%3Cjira.kafka.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/eea03d504b36e8f870e8321d908e1def1addda16adda04327fe7c125%40%3Cdev.logging.apache.org%3E",
"url": "https://lists.apache.org/thread.html/eea03d504b36e8f870e8321d908e1def1addda16adda04327fe7c125%40%3Cdev.logging.apache.org%3E"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200110-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200110-0001/"
} }
] ]
}, },

14
2019/17xxx/CVE-2019-17573.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "http://cxf.apache.org/security-advisories.data/CVE-2019-17573.txt.asc?version=1&modificationDate=1579178542000&api=v2",
"url": "http://cxf.apache.org/security-advisories.data/CVE-2019-17573.txt.asc?version=1&modificationDate=1579178542000&api=v2"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[announce] 20200116 [CVE-2019-17573] Apache CXF Reflected XSS in the services listing page", "name": "[announce] 20200116 [CVE-2019-17573] Apache CXF Reflected XSS in the services listing page",
@ -65,7 +60,14 @@
"url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E" "url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "http://cxf.apache.org/security-advisories.data/CVE-2019-17573.txt.asc?version=1&modificationDate=1579178542000&api=v2",
"url": "http://cxf.apache.org/security-advisories.data/CVE-2019-17573.txt.asc?version=1&modificationDate=1579178542000&api=v2"
} }
] ]
}, },

24
2019/19xxx/CVE-2019-19956.json
View File

@ -52,21 +52,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/commit/5a02583c7e683896d84878bd90641d8d9b0d0549",
"refsource": "MISC",
"name": "https://gitlab.gnome.org/GNOME/libxml2/commit/5a02583c7e683896d84878bd90641d8d9b0d0549"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20191228 [SECURITY] [DLA 2048-1] libxml2 security update", "name": "[debian-lts-announce] 20191228 [SECURITY] [DLA 2048-1] libxml2 security update",
"url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00032.html" "url": "https://lists.debian.org/debian-lts-announce/2019/12/msg00032.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200114-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200114-0002/"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4274-1", "name": "USN-4274-1",
@ -93,7 +83,19 @@
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00005.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00005.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/commit/5a02583c7e683896d84878bd90641d8d9b0d0549",
"refsource": "MISC",
"name": "https://gitlab.gnome.org/GNOME/libxml2/commit/5a02583c7e683896d84878bd90641d8d9b0d0549"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200114-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200114-0002/"
} }
] ]
} }

154
2019/1xxx/CVE-2019-1547.json
View File

@ -73,46 +73,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://www.openssl.org/news/secadv/20190910.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20190910.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=30c22fa8b1d840036b8e203585738df62a03cec8",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=30c22fa8b1d840036b8e203585738df62a03cec8"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=21c856b75d81eff61aa63b4f036bb64a85bf6d46",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=21c856b75d81eff61aa63b4f036bb64a85bf6d46"
},
{
"refsource": "MISC",
"name": "https://arxiv.org/abs/1909.01785",
"url": "https://arxiv.org/abs/1909.01785"
},
{ {
"refsource": "BUGTRAQ", "refsource": "BUGTRAQ",
"name": "20190912 [slackware-security] openssl (SSA:2019-254-03)", "name": "20190912 [slackware-security] openssl (SSA:2019-254-03)",
"url": "https://seclists.org/bugtraq/2019/Sep/25" "url": "https://seclists.org/bugtraq/2019/Sep/25"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html",
"url": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0002/"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2019:2158", "name": "openSUSE-SU-2019:2158",
@ -168,58 +133,95 @@
"name": "openSUSE-SU-2019:2269", "name": "openSUSE-SU-2019:2269",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00016.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00016.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K73422160?utm_source=f5support&utm_medium=RSS",
"url": "https://support.f5.com/csp/article/K73422160?utm_source=f5support&utm_medium=RSS"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "GENTOO", "refsource": "GENTOO",
"name": "GLSA-201911-04", "name": "GLSA-201911-04",
"url": "https://security.gentoo.org/glsa/201911-04" "url": "https://security.gentoo.org/glsa/201911-04"
}, },
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-08",
"url": "https://www.tenable.com/security/tns-2019-08"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200122-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200122-0002/"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200416-0003/",
"url": "https://security.netapp.com/advisory/ntap-20200416-0003/"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4376-1", "name": "USN-4376-1",
"url": "https://usn.ubuntu.com/4376-1/" "url": "https://usn.ubuntu.com/4376-1/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-08",
"url": "https://www.tenable.com/security/tns-2019-08"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"name": "https://www.openssl.org/news/secadv/20190910.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20190910.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=30c22fa8b1d840036b8e203585738df62a03cec8",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=30c22fa8b1d840036b8e203585738df62a03cec8"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=7c1709c2da5414f5b6133d00a03fc8c5bf996c7a"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=21c856b75d81eff61aa63b4f036bb64a85bf6d46",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=21c856b75d81eff61aa63b4f036bb64a85bf6d46"
},
{
"refsource": "MISC",
"name": "https://arxiv.org/abs/1909.01785",
"url": "https://arxiv.org/abs/1909.01785"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html",
"url": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K73422160?utm_source=f5support&utm_medium=RSS",
"url": "https://support.f5.com/csp/article/K73422160?utm_source=f5support&utm_medium=RSS"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200122-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200122-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200416-0003/",
"url": "https://security.netapp.com/advisory/ntap-20200416-0003/"
} }
] ]
} }

62
2019/1xxx/CVE-2019-1549.json
View File

@ -67,26 +67,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://www.openssl.org/news/secadv/20190910.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20190910.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1b0fe00e2704b5e20334a16d3c9099d1ba2ef1be",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1b0fe00e2704b5e20334a16d3c9099d1ba2ef1be"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K44070243",
"url": "https://support.f5.com/csp/article/K44070243"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2019-d15aac6c4e", "name": "FEDORA-2019-d15aac6c4e",
@ -108,9 +88,19 @@
"url": "https://www.debian.org/security/2019/dsa-4539" "url": "https://www.debian.org/security/2019/dsa-4539"
}, },
{ {
"refsource": "CONFIRM", "refsource": "UBUNTU",
"name": "https://support.f5.com/csp/article/K44070243?utm_source=f5support&utm_medium=RSS", "name": "USN-4376-1",
"url": "https://support.f5.com/csp/article/K44070243?utm_source=f5support&utm_medium=RSS" "url": "https://usn.ubuntu.com/4376-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
@ -123,17 +113,29 @@
"name": "https://www.oracle.com/security-alerts/cpujan2020.html" "name": "https://www.oracle.com/security-alerts/cpujan2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "name": "https://www.openssl.org/news/secadv/20190910.txt",
"refsource": "MISC", "refsource": "CONFIRM",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "url": "https://www.openssl.org/news/secadv/20190910.txt"
}, },
{ {
"refsource": "UBUNTU", "refsource": "CONFIRM",
"name": "USN-4376-1", "name": "https://security.netapp.com/advisory/ntap-20190919-0002/",
"url": "https://usn.ubuntu.com/4376-1/" "url": "https://security.netapp.com/advisory/ntap-20190919-0002/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1b0fe00e2704b5e20334a16d3c9099d1ba2ef1be",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=1b0fe00e2704b5e20334a16d3c9099d1ba2ef1be"
},
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K44070243",
"url": "https://support.f5.com/csp/article/K44070243"
},
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K44070243?utm_source=f5support&utm_medium=RSS",
"url": "https://support.f5.com/csp/article/K44070243?utm_source=f5support&utm_medium=RSS"
} }
] ]
} }

108
2019/1xxx/CVE-2019-1551.json
View File

@ -70,6 +70,61 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "BUGTRAQ",
"name": "20191225 [slackware-security] openssl (SSA:2019-354-01)",
"url": "https://seclists.org/bugtraq/2019/Dec/39"
},
{
"refsource": "DEBIAN",
"name": "DSA-4594",
"url": "https://www.debian.org/security/2019/dsa-4594"
},
{
"refsource": "BUGTRAQ",
"name": "20191229 [SECURITY] [DSA 4594-1] openssl1.0 security update",
"url": "https://seclists.org/bugtraq/2019/Dec/46"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2020:0062",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html"
},
{
"refsource": "GENTOO",
"name": "GLSA-202004-10",
"url": "https://security.gentoo.org/glsa/202004-10"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-fcc91a28e8",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-da2d1ef2d7",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-d7b29838f6",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/"
},
{
"refsource": "UBUNTU",
"name": "USN-4376-1",
"url": "https://usn.ubuntu.com/4376-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{ {
"name": "https://www.openssl.org/news/secadv/20191206.txt", "name": "https://www.openssl.org/news/secadv/20191206.txt",
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -90,68 +145,15 @@
"name": "https://security.netapp.com/advisory/ntap-20191210-0001/", "name": "https://security.netapp.com/advisory/ntap-20191210-0001/",
"url": "https://security.netapp.com/advisory/ntap-20191210-0001/" "url": "https://security.netapp.com/advisory/ntap-20191210-0001/"
}, },
{
"refsource": "BUGTRAQ",
"name": "20191225 [slackware-security] openssl (SSA:2019-354-01)",
"url": "https://seclists.org/bugtraq/2019/Dec/39"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"name": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html", "name": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html",
"url": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html" "url": "http://packetstormsecurity.com/files/155754/Slackware-Security-Advisory-openssl-Updates.html"
}, },
{
"refsource": "DEBIAN",
"name": "DSA-4594",
"url": "https://www.debian.org/security/2019/dsa-4594"
},
{
"refsource": "BUGTRAQ",
"name": "20191229 [SECURITY] [DSA 4594-1] openssl1.0 security update",
"url": "https://seclists.org/bugtraq/2019/Dec/46"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2020:0062",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00030.html"
},
{
"refsource": "GENTOO",
"name": "GLSA-202004-10",
"url": "https://security.gentoo.org/glsa/202004-10"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-fcc91a28e8",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-03", "name": "https://www.tenable.com/security/tns-2020-03",
"url": "https://www.tenable.com/security/tns-2020-03" "url": "https://www.tenable.com/security/tns-2020-03"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-da2d1ef2d7",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-d7b29838f6",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/"
},
{
"refsource": "UBUNTU",
"name": "USN-4376-1",
"url": "https://usn.ubuntu.com/4376-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

88
2019/1xxx/CVE-2019-1552.json
View File

@ -73,6 +73,51 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "FEDORA",
"name": "FEDORA-2019-db06efdea1",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EWC42UXL5GHTU5G77VKBF6JYUUNGSHOM/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2019-00c25b9379",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZBEV5QGDRFUZDMNECFXUSN5FMYOZDE4V/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2019-9a0a7c0986",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y3IVFGSERAZLNJCK35TEM2R4726XIH3Z/"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-08",
"url": "https://www.tenable.com/security/tns-2019-08"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{ {
"name": "https://www.openssl.org/news/secadv/20190730.txt", "name": "https://www.openssl.org/news/secadv/20190730.txt",
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -103,21 +148,6 @@
"name": "https://security.netapp.com/advisory/ntap-20190823-0006/", "name": "https://security.netapp.com/advisory/ntap-20190823-0006/",
"url": "https://security.netapp.com/advisory/ntap-20190823-0006/" "url": "https://security.netapp.com/advisory/ntap-20190823-0006/"
}, },
{
"refsource": "FEDORA",
"name": "FEDORA-2019-db06efdea1",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EWC42UXL5GHTU5G77VKBF6JYUUNGSHOM/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2019-00c25b9379",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZBEV5QGDRFUZDMNECFXUSN5FMYOZDE4V/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2019-9a0a7c0986",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Y3IVFGSERAZLNJCK35TEM2R4726XIH3Z/"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K94041354", "name": "https://support.f5.com/csp/article/K94041354",
@ -127,34 +157,6 @@
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K94041354?utm_source=f5support&utm_medium=RSS", "name": "https://support.f5.com/csp/article/K94041354?utm_source=f5support&utm_medium=RSS",
"url": "https://support.f5.com/csp/article/K94041354?utm_source=f5support&utm_medium=RSS" "url": "https://support.f5.com/csp/article/K94041354?utm_source=f5support&utm_medium=RSS"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-08",
"url": "https://www.tenable.com/security/tns-2019-08"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

114
2019/1xxx/CVE-2019-1563.json
View File

@ -73,41 +73,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://www.openssl.org/news/secadv/20190910.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20190910.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=08229ad838c50f644d7e928e2eef147b4308ad64",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=08229ad838c50f644d7e928e2eef147b4308ad64"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=631f94db0065c78181ca9ba5546ebc8bb3884b97",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=631f94db0065c78181ca9ba5546ebc8bb3884b97"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e21f8cf78a125cd3c8c0d1a1a6c8bb0b901f893f",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e21f8cf78a125cd3c8c0d1a1a6c8bb0b901f893f"
},
{ {
"refsource": "BUGTRAQ", "refsource": "BUGTRAQ",
"name": "20190912 [slackware-security] openssl (SSA:2019-254-03)", "name": "20190912 [slackware-security] openssl (SSA:2019-254-03)",
"url": "https://seclists.org/bugtraq/2019/Sep/25" "url": "https://seclists.org/bugtraq/2019/Sep/25"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html",
"url": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0002/"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2019:2158", "name": "openSUSE-SU-2019:2158",
@ -163,43 +133,75 @@
"name": "openSUSE-SU-2019:2269", "name": "openSUSE-SU-2019:2269",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00016.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00016.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K97324400?utm_source=f5support&utm_medium=RSS",
"url": "https://support.f5.com/csp/article/K97324400?utm_source=f5support&utm_medium=RSS"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{ {
"refsource": "GENTOO", "refsource": "GENTOO",
"name": "GLSA-201911-04", "name": "GLSA-201911-04",
"url": "https://security.gentoo.org/glsa/201911-04" "url": "https://security.gentoo.org/glsa/201911-04"
}, },
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4376-1", "name": "USN-4376-1",
"url": "https://usn.ubuntu.com/4376-1/" "url": "https://usn.ubuntu.com/4376-1/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC",
"name": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujan2020.html"
},
{
"name": "https://www.openssl.org/news/secadv/20190910.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20190910.txt"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html",
"url": "http://packetstormsecurity.com/files/154467/Slackware-Security-Advisory-openssl-Updates.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190919-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190919-0002/"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2019-09",
"url": "https://www.tenable.com/security/tns-2019-09"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=08229ad838c50f644d7e928e2eef147b4308ad64",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=08229ad838c50f644d7e928e2eef147b4308ad64"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=631f94db0065c78181ca9ba5546ebc8bb3884b97",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=631f94db0065c78181ca9ba5546ebc8bb3884b97"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e21f8cf78a125cd3c8c0d1a1a6c8bb0b901f893f",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=e21f8cf78a125cd3c8c0d1a1a6c8bb0b901f893f"
},
{
"refsource": "CONFIRM",
"name": "https://support.f5.com/csp/article/K97324400?utm_source=f5support&utm_medium=RSS",
"url": "https://support.f5.com/csp/article/K97324400?utm_source=f5support&utm_medium=RSS"
} }
] ]
} }

34
2019/20xxx/CVE-2019-20330.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2526",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2526"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.10.1...jackson-databind-2.9.10.2",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.10.1...jackson-databind-2.9.10.2"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[druid-commits] 20200114 [GitHub] [druid] ccaominh opened a new pull request #9189: Suppress CVE-2019-20330 for htrace-core-4.0.1", "name": "[druid-commits] 20200114 [GitHub] [druid] ccaominh opened a new pull request #9189: Suppress CVE-2019-20330 for htrace-core-4.0.1",
@ -177,11 +167,6 @@
"name": "[zookeeper-commits] 20200123 [zookeeper] branch master updated: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330", "name": "[zookeeper-commits] 20200123 [zookeeper] branch master updated: ZOOKEEPER-3699: upgrade jackson-databind to address CVE-2019-20330",
"url": "https://lists.apache.org/thread.html/r8831b7fa5ca87a1cf23ee08d6dedb7877a964c1d2bd869af24056a63@%3Ccommits.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/r8831b7fa5ca87a1cf23ee08d6dedb7877a964c1d2bd869af24056a63@%3Ccommits.zookeeper.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200127-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200127-0004/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200220 [SECURITY] [DLA 2111-1] jackson-databind security update", "name": "[debian-lts-announce] 20200220 [SECURITY] [DLA 2111-1] jackson-databind security update",
@ -193,7 +178,24 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2526",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2526"
},
{
"url": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.10.1...jackson-databind-2.9.10.2",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/compare/jackson-databind-2.9.10.1...jackson-databind-2.9.10.2"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200127-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200127-0004/"
} }
] ]
} }

18
2019/20xxx/CVE-2019-20388.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/merge_requests/68",
"refsource": "MISC",
"name": "https://gitlab.gnome.org/GNOME/libxml2/merge_requests/68"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-41fe1680f6", "name": "FEDORA-2020-41fe1680f6",
@ -77,13 +72,20 @@
"name": "openSUSE-SU-2020:0681", "name": "openSUSE-SU-2020:0681",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00047.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00047.html"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/merge_requests/68",
"refsource": "MISC",
"name": "https://gitlab.gnome.org/GNOME/libxml2/merge_requests/68"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200702-0005/", "name": "https://security.netapp.com/advisory/ntap-20200702-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200702-0005/" "url": "https://security.netapp.com/advisory/ntap-20200702-0005/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

8
2019/3xxx/CVE-2019-3738.json
View File

@ -61,13 +61,15 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"url": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities", "url": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities",
"name": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities" "name": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

8
2019/3xxx/CVE-2019-3739.json
View File

@ -61,13 +61,15 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"url": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities", "url": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities",
"name": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities" "name": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

8
2019/3xxx/CVE-2019-3740.json
View File

@ -61,13 +61,15 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"url": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities", "url": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities",
"name": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities" "name": "https://www.dell.com/support/security/en-us/details/DOC-106556/DSA-2019-094-RSA-BSAFE®-Crypto-J-Multiple-Security-Vulnerabilities"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

14
2019/5xxx/CVE-2019-5427.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://hackerone.com/reports/509315",
"url": "https://hackerone.com/reports/509315"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2019-cb14e234fc", "name": "FEDORA-2019-cb14e234fc",
@ -65,7 +60,14 @@
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://hackerone.com/reports/509315",
"url": "https://hackerone.com/reports/509315"
} }
] ]
}, },

74
2019/5xxx/CVE-2019-5489.json
View File

@ -52,41 +52,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://www.theregister.co.uk/2019/01/05/boffins_beat_page_cache/",
"refsource": "MISC",
"url": "https://www.theregister.co.uk/2019/01/05/boffins_beat_page_cache/"
},
{
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1120843",
"refsource": "MISC",
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1120843"
},
{
"name": "https://github.com/torvalds/linux/commit/574823bfab82d9d8fa47f422778043fbb4b4f50e",
"refsource": "MISC",
"url": "https://github.com/torvalds/linux/commit/574823bfab82d9d8fa47f422778043fbb4b4f50e"
},
{
"name": "https://arxiv.org/abs/1901.01161",
"refsource": "MISC",
"url": "https://arxiv.org/abs/1901.01161"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190307-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190307-0001/"
},
{ {
"name": "106478", "name": "106478",
"refsource": "BID", "refsource": "BID",
"url": "http://www.securityfocus.com/bid/106478" "url": "http://www.securityfocus.com/bid/106478"
}, },
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=574823bfab82d9d8fa47f422778043fbb4b4f50e",
"refsource": "MISC",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=574823bfab82d9d8fa47f422778043fbb4b4f50e"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2019:1479", "name": "openSUSE-SU-2019:1479",
@ -197,18 +167,50 @@
"name": "RHSA-2019:4255", "name": "RHSA-2019:4255",
"url": "https://access.redhat.com/errata/RHSA-2019:4255" "url": "https://access.redhat.com/errata/RHSA-2019:4255"
}, },
{
"refsource": "CONFIRM",
"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-pagecache-en",
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-pagecache-en"
},
{ {
"refsource": "REDHAT", "refsource": "REDHAT",
"name": "RHSA-2020:0204", "name": "RHSA-2020:0204",
"url": "https://access.redhat.com/errata/RHSA-2020:0204" "url": "https://access.redhat.com/errata/RHSA-2020:0204"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"name": "https://www.theregister.co.uk/2019/01/05/boffins_beat_page_cache/",
"refsource": "MISC",
"url": "https://www.theregister.co.uk/2019/01/05/boffins_beat_page_cache/"
},
{
"name": "https://bugzilla.suse.com/show_bug.cgi?id=1120843",
"refsource": "MISC",
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1120843"
},
{
"name": "https://github.com/torvalds/linux/commit/574823bfab82d9d8fa47f422778043fbb4b4f50e",
"refsource": "MISC",
"url": "https://github.com/torvalds/linux/commit/574823bfab82d9d8fa47f422778043fbb4b4f50e"
},
{
"name": "https://arxiv.org/abs/1901.01161",
"refsource": "MISC",
"url": "https://arxiv.org/abs/1901.01161"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190307-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190307-0001/"
},
{
"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=574823bfab82d9d8fa47f422778043fbb4b4f50e",
"refsource": "MISC",
"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=574823bfab82d9d8fa47f422778043fbb4b4f50e"
},
{
"refsource": "CONFIRM",
"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-pagecache-en",
"url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-pagecache-en"
} }
] ]
} }

38
2019/8xxx/CVE-2019-8457.json
View File

@ -44,16 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/90acdbfce9c08858",
"url": "https://www.sqlite.org/src/info/90acdbfce9c08858"
},
{
"refsource": "MISC",
"name": "https://www.sqlite.org/releaselog/3_28_0.html",
"url": "https://www.sqlite.org/releaselog/3_28_0.html"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4004-1", "name": "USN-4004-1",
@ -64,11 +54,6 @@
"name": "USN-4004-2", "name": "USN-4004-2",
"url": "https://usn.ubuntu.com/4004-2/" "url": "https://usn.ubuntu.com/4004-2/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190606-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190606-0002/"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4019-1", "name": "USN-4019-1",
@ -94,6 +79,16 @@
"name": "FEDORA-2019-3377813d18", "name": "FEDORA-2019-3377813d18",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OPKYSWCOM3CL66RI76TYVIG6TJ263RXH/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OPKYSWCOM3CL66RI76TYVIG6TJ263RXH/"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html", "url": "https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"refsource": "MISC", "refsource": "MISC",
@ -105,12 +100,19 @@
"name": "https://www.oracle.com/security-alerts/cpujan2020.html" "name": "https://www.oracle.com/security-alerts/cpujan2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.sqlite.org/src/info/90acdbfce9c08858",
"url": "https://www.sqlite.org/src/info/90acdbfce9c08858"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "refsource": "MISC",
"name": "https://www.sqlite.org/releaselog/3_28_0.html",
"url": "https://www.sqlite.org/releaselog/3_28_0.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20190606-0002/",
"url": "https://security.netapp.com/advisory/ntap-20190606-0002/"
} }
] ]
}, },

18
2020/10xxx/CVE-2020-10672.json
View File

@ -52,28 +52,30 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200322 [SECURITY] [DLA 2153-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00027.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2659", "url": "https://github.com/FasterXML/jackson-databind/issues/2659",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2659" "name": "https://github.com/FasterXML/jackson-databind/issues/2659"
}, },
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200322 [SECURITY] [DLA 2153-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00027.html"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200403-0002/", "name": "https://security.netapp.com/advisory/ntap-20200403-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/10xxx/CVE-2020-10673.json
View File

@ -52,20 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200322 [SECURITY] [DLA 2153-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00027.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2660", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2660" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200322 [SECURITY] [DLA 2153-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00027.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -73,7 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://github.com/FasterXML/jackson-databind/issues/2660",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2660"
} }
] ]
} }

18
2020/10xxx/CVE-2020-10683.json
View File

@ -52,6 +52,16 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "SUSE",
"name": "openSUSE-SU-2020:0719",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00061.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html", "url": "https://cheatsheetseries.owasp.org/cheatsheets/XML_External_Entity_Prevention_Cheat_Sheet.html",
"refsource": "MISC", "refsource": "MISC",
@ -76,14 +86,6 @@
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200518-0002/", "name": "https://security.netapp.com/advisory/ntap-20200518-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200518-0002/" "url": "https://security.netapp.com/advisory/ntap-20200518-0002/"
},
{
"refsource": "SUSE",
"name": "openSUSE-SU-2020:0719",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00061.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/10xxx/CVE-2020-10968.json
View File

@ -52,15 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2662", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2662" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -68,12 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
}, },
{ {
"refsource": "MLIST", "url": "https://github.com/FasterXML/jackson-databind/issues/2662",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update", "refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html" "name": "https://github.com/FasterXML/jackson-databind/issues/2662"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/10xxx/CVE-2020-10969.json
View File

@ -52,15 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2642", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2642" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -68,12 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
}, },
{ {
"refsource": "MLIST", "url": "https://github.com/FasterXML/jackson-databind/issues/2642",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update", "refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html" "name": "https://github.com/FasterXML/jackson-databind/issues/2642"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

38
2020/11xxx/CVE-2020-11022.json
View File

@ -69,6 +69,26 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "DEBIAN",
"name": "DSA-4693",
"url": "https://www.debian.org/security/2020/dsa-4693"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-11be4b36d4",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-36d2db5f51",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"name": "https://jquery.com/upgrade-guide/3.5/", "name": "https://jquery.com/upgrade-guide/3.5/",
"refsource": "MISC", "refsource": "MISC",
@ -98,24 +118,6 @@
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://www.drupal.org/sa-core-2020-002", "name": "https://www.drupal.org/sa-core-2020-002",
"url": "https://www.drupal.org/sa-core-2020-002" "url": "https://www.drupal.org/sa-core-2020-002"
},
{
"refsource": "DEBIAN",
"name": "DSA-4693",
"url": "https://www.debian.org/security/2020/dsa-4693"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-11be4b36d4",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOE7P7APPRQKD4FGNHBKJPDY6FFCOH3W/"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-36d2db5f51",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

36
2020/11xxx/CVE-2020-11023.json
View File

@ -70,20 +70,25 @@
"references": { "references": {
"reference_data": [ "reference_data": [
{ {
"name": "https://github.com/jquery/jquery/security/advisories/GHSA-jpcq-cgw6-v4j6", "refsource": "DEBIAN",
"refsource": "CONFIRM", "name": "DSA-4693",
"url": "https://github.com/jquery/jquery/security/advisories/GHSA-jpcq-cgw6-v4j6" "url": "https://www.debian.org/security/2020/dsa-4693"
},
{
"refsource": "FEDORA",
"name": "FEDORA-2020-36d2db5f51",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"name": "https://jquery.com/upgrade-guide/3.5/", "name": "https://jquery.com/upgrade-guide/3.5/",
"refsource": "MISC", "refsource": "MISC",
"url": "https://jquery.com/upgrade-guide/3.5/" "url": "https://jquery.com/upgrade-guide/3.5/"
}, },
{
"name": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released",
"refsource": "MISC",
"url": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200511-0006/", "name": "https://security.netapp.com/advisory/ntap-20200511-0006/",
@ -95,17 +100,14 @@
"url": "https://www.drupal.org/sa-core-2020-002" "url": "https://www.drupal.org/sa-core-2020-002"
}, },
{ {
"refsource": "DEBIAN", "name": "https://github.com/jquery/jquery/security/advisories/GHSA-jpcq-cgw6-v4j6",
"name": "DSA-4693", "refsource": "CONFIRM",
"url": "https://www.debian.org/security/2020/dsa-4693" "url": "https://github.com/jquery/jquery/security/advisories/GHSA-jpcq-cgw6-v4j6"
}, },
{ {
"refsource": "FEDORA", "name": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released",
"name": "FEDORA-2020-36d2db5f51", "refsource": "MISC",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QPN2L2XVQGUA2V5HNQJWHK3APSK3VN7K/" "url": "https://blog.jquery.com/2020/04/10/jquery-3-5-0-released"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

34
2020/11xxx/CVE-2020-11080.json
View File

@ -69,21 +69,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr",
"refsource": "CONFIRM",
"url": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr"
},
{
"name": "https://github.com/nghttp2/nghttp2/commit/336a98feb0d56b9ac54e12736b18785c27f75090",
"refsource": "MISC",
"url": "https://github.com/nghttp2/nghttp2/commit/336a98feb0d56b9ac54e12736b18785c27f75090"
},
{
"name": "https://github.com/nghttp2/nghttp2/commit/f8da73bd042f810f34d19f9eae02b46d870af394",
"refsource": "MISC",
"url": "https://github.com/nghttp2/nghttp2/commit/f8da73bd042f810f34d19f9eae02b46d870af394"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4696", "name": "DSA-4696",
@ -100,7 +85,24 @@
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AAC2AA36OTRHKSVM5OV7TTVB3CZIGEFL/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AAC2AA36OTRHKSVM5OV7TTVB3CZIGEFL/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"name": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr",
"refsource": "CONFIRM",
"url": "https://github.com/nghttp2/nghttp2/security/advisories/GHSA-q5wr-xfw9-q7xr"
},
{
"name": "https://github.com/nghttp2/nghttp2/commit/336a98feb0d56b9ac54e12736b18785c27f75090",
"refsource": "MISC",
"url": "https://github.com/nghttp2/nghttp2/commit/336a98feb0d56b9ac54e12736b18785c27f75090"
},
{
"name": "https://github.com/nghttp2/nghttp2/commit/f8da73bd042f810f34d19f9eae02b46d870af394",
"refsource": "MISC",
"url": "https://github.com/nghttp2/nghttp2/commit/f8da73bd042f810f34d19f9eae02b46d870af394"
} }
] ]
}, },

18
2020/11xxx/CVE-2020-11111.json
View File

@ -52,15 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2664", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2664" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -68,12 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
}, },
{ {
"refsource": "MLIST", "url": "https://github.com/FasterXML/jackson-databind/issues/2664",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update", "refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html" "name": "https://github.com/FasterXML/jackson-databind/issues/2664"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/11xxx/CVE-2020-11112.json
View File

@ -52,15 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2666", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2666" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -68,12 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
}, },
{ {
"refsource": "MLIST", "url": "https://github.com/FasterXML/jackson-databind/issues/2666",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update", "refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html" "name": "https://github.com/FasterXML/jackson-databind/issues/2666"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/11xxx/CVE-2020-11113.json
View File

@ -52,15 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2670", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2670" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -68,12 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200403-0002/" "url": "https://security.netapp.com/advisory/ntap-20200403-0002/"
}, },
{ {
"refsource": "MLIST", "url": "https://github.com/FasterXML/jackson-databind/issues/2670",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update", "refsource": "MISC",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html" "name": "https://github.com/FasterXML/jackson-databind/issues/2670"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/11xxx/CVE-2020-11619.json
View File

@ -52,28 +52,30 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2680", "url": "https://github.com/FasterXML/jackson-databind/issues/2680",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2680" "name": "https://github.com/FasterXML/jackson-databind/issues/2680"
}, },
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200511-0004/", "name": "https://security.netapp.com/advisory/ntap-20200511-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200511-0004/" "url": "https://security.netapp.com/advisory/ntap-20200511-0004/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/11xxx/CVE-2020-11620.json
View File

@ -52,20 +52,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
},
{ {
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062", "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC", "refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062" "name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
}, },
{ {
"url": "https://github.com/FasterXML/jackson-databind/issues/2682", "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2682" "name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200417 [SECURITY] [DLA 2179-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/04/msg00012.html"
}, },
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -73,7 +73,9 @@
"url": "https://security.netapp.com/advisory/ntap-20200511-0004/" "url": "https://security.netapp.com/advisory/ntap-20200511-0004/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://github.com/FasterXML/jackson-databind/issues/2682",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2682"
} }
] ]
} }

28
2020/11xxx/CVE-2020-11655.json
View File

@ -52,6 +52,21 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200505 [SECURITY] [DLA 2203-1] sqlite3 security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00006.html"
},
{
"refsource": "UBUNTU",
"name": "USN-4394-1",
"url": "https://usn.ubuntu.com/4394-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://www3.sqlite.org/cgi/src/tktview?name=af4556bb5c", "url": "https://www3.sqlite.org/cgi/src/tktview?name=af4556bb5c",
"refsource": "MISC", "refsource": "MISC",
@ -66,19 +81,6 @@
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200416-0001/", "name": "https://security.netapp.com/advisory/ntap-20200416-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200416-0001/" "url": "https://security.netapp.com/advisory/ntap-20200416-0001/"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200505 [SECURITY] [DLA 2203-1] sqlite3 security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00006.html"
},
{
"refsource": "UBUNTU",
"name": "USN-4394-1",
"url": "https://usn.ubuntu.com/4394-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

18
2020/11xxx/CVE-2020-11656.json
View File

@ -52,6 +52,16 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200416-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200416-0001/"
},
{ {
"url": "https://www3.sqlite.org/cgi/src/info/b64674919f673602", "url": "https://www3.sqlite.org/cgi/src/info/b64674919f673602",
"refsource": "MISC", "refsource": "MISC",
@ -61,14 +71,6 @@
"url": "https://www.sqlite.org/src/info/d09f8c3621d5f7f8", "url": "https://www.sqlite.org/src/info/d09f8c3621d5f7f8",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.sqlite.org/src/info/d09f8c3621d5f7f8" "name": "https://www.sqlite.org/src/info/d09f8c3621d5f7f8"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200416-0001/",
"url": "https://security.netapp.com/advisory/ntap-20200416-0001/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

34
2020/13xxx/CVE-2020-13434.json
View File

@ -52,26 +52,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.sqlite.org/src/info/23439ea582241138",
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/23439ea582241138"
},
{
"url": "https://www.sqlite.org/src/info/d08d3405878d394e",
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/d08d3405878d394e"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200526 [SECURITY] [DLA 2221-1] sqlite3", "name": "[debian-lts-announce] 20200526 [SECURITY] [DLA 2221-1] sqlite3",
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00024.html" "url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00024.html"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200528-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200528-0004/"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-0477f8840e", "name": "FEDORA-2020-0477f8840e",
@ -83,7 +68,24 @@
"url": "https://usn.ubuntu.com/4394-1/" "url": "https://usn.ubuntu.com/4394-1/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://www.sqlite.org/src/info/23439ea582241138",
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/23439ea582241138"
},
{
"url": "https://www.sqlite.org/src/info/d08d3405878d394e",
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/d08d3405878d394e"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200528-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200528-0004/"
} }
] ]
} }

24
2020/13xxx/CVE-2020-13435.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.sqlite.org/src/info/7a5279a25c57adf1",
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/7a5279a25c57adf1"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200528-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200528-0004/"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-0477f8840e", "name": "FEDORA-2020-0477f8840e",
@ -73,7 +63,19 @@
"url": "https://usn.ubuntu.com/4394-1/" "url": "https://usn.ubuntu.com/4394-1/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200528-0004/",
"url": "https://security.netapp.com/advisory/ntap-20200528-0004/"
},
{
"url": "https://www.sqlite.org/src/info/7a5279a25c57adf1",
"refsource": "MISC",
"name": "https://www.sqlite.org/src/info/7a5279a25c57adf1"
} }
] ]
} }

28
2020/13xxx/CVE-2020-13630.json
View File

@ -52,6 +52,21 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "FEDORA",
"name": "FEDORA-2020-0477f8840e",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/"
},
{
"refsource": "UBUNTU",
"name": "USN-4394-1",
"url": "https://usn.ubuntu.com/4394-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459", "url": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459",
"refsource": "MISC", "refsource": "MISC",
@ -62,23 +77,10 @@
"refsource": "MISC", "refsource": "MISC",
"name": "https://sqlite.org/src/info/0d69f76f0865f962" "name": "https://sqlite.org/src/info/0d69f76f0865f962"
}, },
{
"refsource": "FEDORA",
"name": "FEDORA-2020-0477f8840e",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200608-0002/", "name": "https://security.netapp.com/advisory/ntap-20200608-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200608-0002/" "url": "https://security.netapp.com/advisory/ntap-20200608-0002/"
},
{
"refsource": "UBUNTU",
"name": "USN-4394-1",
"url": "https://usn.ubuntu.com/4394-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

34
2020/13xxx/CVE-2020-13631.json
View File

@ -52,33 +52,35 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459",
"refsource": "MISC",
"name": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459"
},
{
"url": "https://sqlite.org/src/info/eca0ba2cf4c0fdf7",
"refsource": "MISC",
"name": "https://sqlite.org/src/info/eca0ba2cf4c0fdf7"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-0477f8840e", "name": "FEDORA-2020-0477f8840e",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200608-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200608-0002/"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4394-1", "name": "USN-4394-1",
"url": "https://usn.ubuntu.com/4394-1/" "url": "https://usn.ubuntu.com/4394-1/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459",
"refsource": "MISC",
"name": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200608-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200608-0002/"
},
{
"url": "https://sqlite.org/src/info/eca0ba2cf4c0fdf7",
"refsource": "MISC",
"name": "https://sqlite.org/src/info/eca0ba2cf4c0fdf7"
} }
] ]
} }

34
2020/13xxx/CVE-2020-13632.json
View File

@ -52,33 +52,35 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459",
"refsource": "MISC",
"name": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459"
},
{
"url": "https://sqlite.org/src/info/a4dd148928ea65bd",
"refsource": "MISC",
"name": "https://sqlite.org/src/info/a4dd148928ea65bd"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-0477f8840e", "name": "FEDORA-2020-0477f8840e",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L7KXQWHIY2MQP4LNM6ODWJENMXYYQYBN/"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200608-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200608-0002/"
},
{ {
"refsource": "UBUNTU", "refsource": "UBUNTU",
"name": "USN-4394-1", "name": "USN-4394-1",
"url": "https://usn.ubuntu.com/4394-1/" "url": "https://usn.ubuntu.com/4394-1/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459",
"refsource": "MISC",
"name": "https://bugs.chromium.org/p/chromium/issues/detail?id=1080459"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200608-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200608-0002/"
},
{
"url": "https://sqlite.org/src/info/a4dd148928ea65bd",
"refsource": "MISC",
"name": "https://sqlite.org/src/info/a4dd148928ea65bd"
} }
] ]
} }

24
2020/1xxx/CVE-2020-1927.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[oss-security] 20200403 Re: CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect", "name": "[oss-security] 20200403 Re: CVE-2020-1927: mod_rewrite configurations vulnerable to open redirect",
@ -79,18 +74,25 @@
"name": "[httpd-cvs] 20200412 svn commit: r1876426 - /httpd/test/framework/trunk/t/security/CVE-2020-1927.t", "name": "[httpd-cvs] 20200412 svn commit: r1876426 - /httpd/test/framework/trunk/t/security/CVE-2020-1927.t",
"url": "https://lists.apache.org/thread.html/r10b853ea87dd150b0e76fda3f8254dfdb23dd05fa55596405b58478e@%3Ccvs.httpd.apache.org%3E" "url": "https://lists.apache.org/thread.html/r10b853ea87dd150b0e76fda3f8254dfdb23dd05fa55596405b58478e@%3Ccvs.httpd.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200413-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200413-0002/"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2020:0597", "name": "openSUSE-SU-2020:0597",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00002.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00002.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200413-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200413-0002/"
} }
] ]
}, },

24
2020/1xxx/CVE-2020-1934.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[httpd-dev] 20200404 Odd vulnerabilities_24.html output", "name": "[httpd-dev] 20200404 Odd vulnerabilities_24.html output",
@ -59,11 +54,6 @@
"name": "[httpd-dev] 20200404 Re: Odd vulnerabilities_24.html output", "name": "[httpd-dev] 20200404 Re: Odd vulnerabilities_24.html output",
"url": "https://lists.apache.org/thread.html/r1719675306dfbeaceff3dc63ccad3de2d5615919ca3c13276948b9ac@%3Cdev.httpd.apache.org%3E" "url": "https://lists.apache.org/thread.html/r1719675306dfbeaceff3dc63ccad3de2d5615919ca3c13276948b9ac@%3Cdev.httpd.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200413-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200413-0002/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[httpd-cvs] 20200420 svn commit: r1876764 - /httpd/httpd/branches/2.4.x/CHANGES", "name": "[httpd-cvs] 20200420 svn commit: r1876764 - /httpd/httpd/branches/2.4.x/CHANGES",
@ -75,7 +65,19 @@
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00002.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00002.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://httpd.apache.org/security/vulnerabilities_24.html",
"url": "https://httpd.apache.org/security/vulnerabilities_24.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200413-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200413-0002/"
} }
] ]
}, },

14
2020/1xxx/CVE-2020-1935.json
View File

@ -75,11 +75,6 @@
"name": "[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2790) TomEE plus(7.0.7) is affected by CVE-2020-1935 & CVE-2019-17569 vulnerabilities", "name": "[tomee-commits] 20200323 [jira] [Commented] (TOMEE-2790) TomEE plus(7.0.7) is affected by CVE-2020-1935 & CVE-2019-17569 vulnerabilities",
"url": "https://lists.apache.org/thread.html/r7bc994c965a34876bd94d5ff15b4e1e30b6220a15eb9b47c81915b78@%3Ccommits.tomee.apache.org%3E" "url": "https://lists.apache.org/thread.html/r7bc994c965a34876bd94d5ff15b4e1e30b6220a15eb9b47c81915b78@%3Ccommits.tomee.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200327-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200327-0005/"
},
{ {
"refsource": "DEBIAN", "refsource": "DEBIAN",
"name": "DSA-4673", "name": "DSA-4673",
@ -96,7 +91,14 @@
"url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00026.html" "url": "https://lists.debian.org/debian-lts-announce/2020/05/msg00026.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200327-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200327-0005/"
} }
] ]
}, },

24
2020/1xxx/CVE-2020-1938.json
View File

@ -65,11 +65,6 @@
"name": "[ofbiz-notifications] 20200225 [jira] [Updated] (OFBIZ-11407) Upgrade Tomcat from 9.0.29 to 9.0.31 (CVE-2020-1938)", "name": "[ofbiz-notifications] 20200225 [jira] [Updated] (OFBIZ-11407) Upgrade Tomcat from 9.0.29 to 9.0.31 (CVE-2020-1938)",
"url": "https://lists.apache.org/thread.html/r75113652e46c4dee687236510649acfb70d2c63e074152049c3f399d@%3Cnotifications.ofbiz.apache.org%3E" "url": "https://lists.apache.org/thread.html/r75113652e46c4dee687236510649acfb70d2c63e074152049c3f399d@%3Cnotifications.ofbiz.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200226-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200226-0002/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[ofbiz-commits] 20200227 [ofbiz-plugins] branch release17.12 updated: Upgrade Tomcat from 9.0.29 to 9.0.31 (CVE-2020-1938) (OFBIZ-11407)", "name": "[ofbiz-commits] 20200227 [ofbiz-plugins] branch release17.12 updated: Upgrade Tomcat from 9.0.29 to 9.0.31 (CVE-2020-1938) (OFBIZ-11407)",
@ -220,11 +215,6 @@
"name": "[tomcat-users] 20200413 RE: Alternatives for AJP", "name": "[tomcat-users] 20200413 RE: Alternatives for AJP",
"url": "https://lists.apache.org/thread.html/r43faacf64570b1d9a4bada407a5af3b2738b0c007b905f1b6b608c65@%3Cusers.tomcat.apache.org%3E" "url": "https://lists.apache.org/thread.html/r43faacf64570b1d9a4bada407a5af3b2738b0c007b905f1b6b608c65@%3Cusers.tomcat.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "http://support.blackberry.com/kb/articleDetail?articleNumber=000062739",
"url": "http://support.blackberry.com/kb/articleDetail?articleNumber=000062739"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2020:0597", "name": "openSUSE-SU-2020:0597",
@ -261,7 +251,19 @@
"url": "https://lists.apache.org/thread.html/r8f7484589454638af527182ae55ef5b628ba00c05c5b11887c922fb1@%3Cnotifications.ofbiz.apache.org%3E" "url": "https://lists.apache.org/thread.html/r8f7484589454638af527182ae55ef5b628ba00c05c5b11887c922fb1@%3Cnotifications.ofbiz.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200226-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200226-0002/"
},
{
"refsource": "CONFIRM",
"name": "http://support.blackberry.com/kb/articleDetail?articleNumber=000062739",
"url": "http://support.blackberry.com/kb/articleDetail?articleNumber=000062739"
} }
] ]
}, },

8
2020/1xxx/CVE-2020-1941.json
View File

@ -44,13 +44,15 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"name": "http://activemq.apache.org/security-advisories.data/CVE-2020-1941-announcement.txt", "name": "http://activemq.apache.org/security-advisories.data/CVE-2020-1941-announcement.txt",
"url": "http://activemq.apache.org/security-advisories.data/CVE-2020-1941-announcement.txt" "url": "http://activemq.apache.org/security-advisories.data/CVE-2020-1941-announcement.txt"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

14
2020/1xxx/CVE-2020-1945.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r8e592bbfc016a5dbe2a8c0e81ff99682b9c78c453621b82c14e7b75e%40%3Cdev.ant.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r8e592bbfc016a5dbe2a8c0e81ff99682b9c78c453621b82c14e7b75e%40%3Cdev.ant.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[creadur-dev] 20200518 [jira] [Created] (RAT-269) Fix CVE-2020-1945: Apache Ant insecure temporary file vulnerability by updating to latest ANT", "name": "[creadur-dev] 20200518 [jira] [Created] (RAT-269) Fix CVE-2020-1945: Apache Ant insecure temporary file vulnerability by updating to latest ANT",
@ -130,7 +125,14 @@
"url": "https://lists.apache.org/thread.html/r2704fb14ce068c64759a986f81d5b5e42ab434fa13d0f444ad52816b@%3Cdev.creadur.apache.org%3E" "url": "https://lists.apache.org/thread.html/r2704fb14ce068c64759a986f81d5b5e42ab434fa13d0f444ad52816b@%3Cdev.creadur.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r8e592bbfc016a5dbe2a8c0e81ff99682b9c78c453621b82c14e7b75e%40%3Cdev.ant.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r8e592bbfc016a5dbe2a8c0e81ff99682b9c78c453621b82c14e7b75e%40%3Cdev.ant.apache.org%3E"
} }
] ]
}, },

14
2020/1xxx/CVE-2020-1950.json
View File

@ -44,18 +44,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/r463b1a67817ae55fe022536edd6db34e8f9636971188430cbcf8a8dd%40%3Cdev.tika.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r463b1a67817ae55fe022536edd6db34e8f9636971188430cbcf8a8dd%40%3Cdev.tika.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200328 [SECURITY] [DLA 2161-1] tika security update", "name": "[debian-lts-announce] 20200328 [SECURITY] [DLA 2161-1] tika security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00035.html" "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00035.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://lists.apache.org/thread.html/r463b1a67817ae55fe022536edd6db34e8f9636971188430cbcf8a8dd%40%3Cdev.tika.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r463b1a67817ae55fe022536edd6db34e8f9636971188430cbcf8a8dd%40%3Cdev.tika.apache.org%3E"
} }
] ]
}, },

14
2020/1xxx/CVE-2020-1951.json
View File

@ -44,18 +44,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/rd8c1b42bd0e31870d804890b3f00b13d837c528f7ebaf77031323172%40%3Cdev.tika.apache.org%3E",
"url": "https://lists.apache.org/thread.html/rd8c1b42bd0e31870d804890b3f00b13d837c528f7ebaf77031323172%40%3Cdev.tika.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200328 [SECURITY] [DLA 2161-1] tika security update", "name": "[debian-lts-announce] 20200328 [SECURITY] [DLA 2161-1] tika security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00035.html" "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00035.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/rd8c1b42bd0e31870d804890b3f00b13d837c528f7ebaf77031323172%40%3Cdev.tika.apache.org%3E",
"url": "https://lists.apache.org/thread.html/rd8c1b42bd0e31870d804890b3f00b13d837c528f7ebaf77031323172%40%3Cdev.tika.apache.org%3E"
} }
] ]
}, },

104
2020/1xxx/CVE-2020-1967.json
View File

@ -67,16 +67,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"name": "https://www.openssl.org/news/secadv/20200421.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20200421.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1"
},
{ {
"refsource": "FREEBSD", "refsource": "FREEBSD",
"name": "FreeBSD-SA-20:11", "name": "FreeBSD-SA-20:11",
@ -102,11 +92,6 @@
"name": "[tomcat-dev] 20200422 Re: Time for Tomcat Native 1.2.24?", "name": "[tomcat-dev] 20200422 Re: Time for Tomcat Native 1.2.24?",
"url": "https://lists.apache.org/thread.html/r66ea9c436da150683432db5fbc8beb8ae01886c6459ac30c2cea7345@%3Cdev.tomcat.apache.org%3E" "url": "https://lists.apache.org/thread.html/r66ea9c436da150683432db5fbc8beb8ae01886c6459ac30c2cea7345@%3Cdev.tomcat.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44440",
"url": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44440"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomcat-dev] 20200423 Re: Time for Tomcat Native 1.2.24?", "name": "[tomcat-dev] 20200423 Re: Time for Tomcat Native 1.2.24?",
@ -117,61 +102,26 @@
"name": "GLSA-202004-10", "name": "GLSA-202004-10",
"url": "https://security.gentoo.org/glsa/202004-10" "url": "https://security.gentoo.org/glsa/202004-10"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200424-0003/",
"url": "https://security.netapp.com/advisory/ntap-20200424-0003/"
},
{
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL",
"url": "https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-fcc91a28e8", "name": "FEDORA-2020-fcc91a28e8",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XVEP3LAK4JSPRXFO4QF4GG2IVXADV3SO/"
}, },
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-03",
"url": "https://www.tenable.com/security/tns-2020-03"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-da2d1ef2d7", "name": "FEDORA-2020-da2d1ef2d7",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DDHOAATPWJCXRNFMJ2SASDBBNU5RJONY/"
}, },
{
"refsource": "MISC",
"name": "https://github.com/irsl/CVE-2020-1967",
"url": "https://github.com/irsl/CVE-2020-1967"
},
{ {
"refsource": "FULLDISC", "refsource": "FULLDISC",
"name": "20200501 CVE-2020-1967: proving sigalg != NULL", "name": "20200501 CVE-2020-1967: proving sigalg != NULL",
"url": "http://seclists.org/fulldisclosure/2020/May/5" "url": "http://seclists.org/fulldisclosure/2020/May/5"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/157527/OpenSSL-signature_algorithms_cert-Denial-Of-Service.html",
"url": "http://packetstormsecurity.com/files/157527/OpenSSL-signature_algorithms_cert-Denial-Of-Service.html"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-d7b29838f6", "name": "FEDORA-2020-d7b29838f6",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/" "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/EXDDAOWSAIEFQNBHWYE6PPYFV4QXGMCD/"
}, },
{
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_20_05",
"url": "https://www.synology.com/security/advisory/Synology_SA_20_05"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-04",
"url": "https://www.tenable.com/security/tns-2020-04"
},
{ {
"refsource": "SUSE", "refsource": "SUSE",
"name": "openSUSE-SU-2020:0933", "name": "openSUSE-SU-2020:0933",
@ -183,7 +133,59 @@
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00011.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00011.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-03",
"url": "https://www.tenable.com/security/tns-2020-03"
},
{
"name": "https://www.openssl.org/news/secadv/20200421.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20200421.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=eb563247aef3e83dda7679c43f9649270462e5b1"
},
{
"refsource": "CONFIRM",
"name": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44440",
"url": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44440"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200424-0003/",
"url": "https://security.netapp.com/advisory/ntap-20200424-0003/"
},
{
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL",
"url": "https://www.synology.com/security/advisory/Synology_SA_20_05_OpenSSL"
},
{
"refsource": "MISC",
"name": "https://github.com/irsl/CVE-2020-1967",
"url": "https://github.com/irsl/CVE-2020-1967"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/157527/OpenSSL-signature_algorithms_cert-Denial-Of-Service.html",
"url": "http://packetstormsecurity.com/files/157527/OpenSSL-signature_algorithms_cert-Denial-Of-Service.html"
},
{
"refsource": "CONFIRM",
"name": "https://www.synology.com/security/advisory/Synology_SA_20_05",
"url": "https://www.synology.com/security/advisory/Synology_SA_20_05"
},
{
"refsource": "CONFIRM",
"name": "https://www.tenable.com/security/tns-2020-04",
"url": "https://www.tenable.com/security/tns-2020-04"
} }
] ]
} }

18
2020/5xxx/CVE-2020-5258.json
View File

@ -81,6 +81,16 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200311 [SECURITY] [DLA 2139-1] dojo security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00012.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"name": "https://github.com/dojo/dojo/security/advisories/GHSA-jxfh-8wgv-vfr2", "name": "https://github.com/dojo/dojo/security/advisories/GHSA-jxfh-8wgv-vfr2",
"refsource": "CONFIRM", "refsource": "CONFIRM",
@ -90,14 +100,6 @@
"name": "https://github.com/dojo/dojo/commit/20a00afb68f5587946dc76fbeaa68c39bda2171d", "name": "https://github.com/dojo/dojo/commit/20a00afb68f5587946dc76fbeaa68c39bda2171d",
"refsource": "MISC", "refsource": "MISC",
"url": "https://github.com/dojo/dojo/commit/20a00afb68f5587946dc76fbeaa68c39bda2171d" "url": "https://github.com/dojo/dojo/commit/20a00afb68f5587946dc76fbeaa68c39bda2171d"
},
{
"refsource": "MLIST",
"name": "[debian-lts-announce] 20200311 [SECURITY] [DLA 2139-1] dojo security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00012.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

14
2020/5xxx/CVE-2020-5397.json
View File

@ -59,18 +59,20 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"url": "https://pivotal.io/security/cve-2020-5397",
"name": "https://pivotal.io/security/cve-2020-5397"
},
{ {
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html", "url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC", "refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html" "name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"url": "https://pivotal.io/security/cve-2020-5397",
"name": "https://pivotal.io/security/cve-2020-5397"
} }
] ]
}, },

28
2020/5xxx/CVE-2020-5398.json
View File

@ -69,11 +69,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"url": "https://pivotal.io/security/cve-2020-5398",
"name": "https://pivotal.io/security/cve-2020-5398"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[camel-commits] 20200220 [camel] branch camel-2.25.x updated: Updating Spring due to CVE-2020-5398", "name": "[camel-commits] 20200220 [camel] branch camel-2.25.x updated: Updating Spring due to CVE-2020-5398",
@ -89,11 +84,6 @@
"name": "[geode-dev] 20200410 Re: Proposal to bring GEODE-7970 to support/1.12", "name": "[geode-dev] 20200410 Re: Proposal to bring GEODE-7970 to support/1.12",
"url": "https://lists.apache.org/thread.html/rdcaadaa9a68b31b7d093d76eacfaacf6c7a819f976b595c75ad2d4dc@%3Cdev.geode.apache.org%3E" "url": "https://lists.apache.org/thread.html/rdcaadaa9a68b31b7d093d76eacfaacf6c7a819f976b595c75ad2d4dc@%3Cdev.geode.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[karaf-issues] 20200514 [jira] [Created] (KARAF-6721) Update Spring versions due to CVE-2020-5398", "name": "[karaf-issues] 20200514 [jira] [Created] (KARAF-6721) Update Spring versions due to CVE-2020-5398",
@ -189,6 +179,21 @@
"name": "[karaf-issues] 20200518 [jira] [Resolved] (KARAF-6721) Upgrade to Spring 5.1.14.RELEASE and 5.2.5.RELEASE due to CVE-2020-5398", "name": "[karaf-issues] 20200518 [jira] [Resolved] (KARAF-6721) Upgrade to Spring 5.1.14.RELEASE and 5.2.5.RELEASE due to CVE-2020-5398",
"url": "https://lists.apache.org/thread.html/r0f2d0ae1bad2edb3d4a863d77f3097b5e88cfbdae7b809f4f42d6aad@%3Cissues.karaf.apache.org%3E" "url": "https://lists.apache.org/thread.html/r0f2d0ae1bad2edb3d4a863d77f3097b5e88cfbdae7b809f4f42d6aad@%3Cissues.karaf.apache.org%3E"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpuapr2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpuapr2020.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"url": "https://pivotal.io/security/cve-2020-5398",
"name": "https://pivotal.io/security/cve-2020-5398"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r712a6fce928e24e7b6ec30994a7e115a70f1f6e4cf2c2fbf0347ce46@%3Ccommits.servicecomb.apache.org%3E", "name": "https://lists.apache.org/thread.html/r712a6fce928e24e7b6ec30994a7e115a70f1f6e4cf2c2fbf0347ce46@%3Ccommits.servicecomb.apache.org%3E",
@ -203,9 +208,6 @@
"refsource": "MISC", "refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r881fb5a95ab251106fed38f836257276feb026bfe01290e72ff91c2a@%3Ccommits.servicecomb.apache.org%3E", "name": "https://lists.apache.org/thread.html/r881fb5a95ab251106fed38f836257276feb026bfe01290e72ff91c2a@%3Ccommits.servicecomb.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r881fb5a95ab251106fed38f836257276feb026bfe01290e72ff91c2a@%3Ccommits.servicecomb.apache.org%3E" "url": "https://lists.apache.org/thread.html/r881fb5a95ab251106fed38f836257276feb026bfe01290e72ff91c2a@%3Ccommits.servicecomb.apache.org%3E"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

14
2020/6xxx/CVE-2020-6851.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/uclouvain/openjpeg/issues/1228",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/issues/1228"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200128 [SECURITY] [DLA 2081-1] openjpeg2 security update", "name": "[debian-lts-announce] 20200128 [SECURITY] [DLA 2081-1] openjpeg2 security update",
@ -93,7 +88,14 @@
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00008.html" "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00008.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://github.com/uclouvain/openjpeg/issues/1228",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/issues/1228"
} }
] ]
} }

24
2020/7xxx/CVE-2020-7059.json
View File

@ -91,11 +91,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"url": "https://bugs.php.net/bug.php?id=79099",
"name": "https://bugs.php.net/bug.php?id=79099"
},
{ {
"refsource": "BUGTRAQ", "refsource": "BUGTRAQ",
"name": "20200218 [SECURITY] [DSA 4626-1] php7.3 security update", "name": "20200218 [SECURITY] [DSA 4626-1] php7.3 security update",
@ -121,11 +116,6 @@
"name": "20200219 [SECURITY] [DSA 4628-1] php7.0 security update", "name": "20200219 [SECURITY] [DSA 4628-1] php7.0 security update",
"url": "https://seclists.org/bugtraq/2020/Feb/31" "url": "https://seclists.org/bugtraq/2020/Feb/31"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200221-0002/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200228 [SECURITY] [DLA 2124-1] php5 security update", "name": "[debian-lts-announce] 20200228 [SECURITY] [DLA 2124-1] php5 security update",
@ -142,7 +132,19 @@
"url": "https://security.gentoo.org/glsa/202003-57" "url": "https://security.gentoo.org/glsa/202003-57"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"url": "https://bugs.php.net/bug.php?id=79099",
"name": "https://bugs.php.net/bug.php?id=79099"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200221-0002/"
} }
] ]
}, },

24
2020/7xxx/CVE-2020-7060.json
View File

@ -91,11 +91,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"url": "https://bugs.php.net/bug.php?id=79037",
"name": "https://bugs.php.net/bug.php?id=79037"
},
{ {
"refsource": "BUGTRAQ", "refsource": "BUGTRAQ",
"name": "20200218 [SECURITY] [DSA 4626-1] php7.3 security update", "name": "20200218 [SECURITY] [DSA 4626-1] php7.3 security update",
@ -121,11 +116,6 @@
"name": "20200219 [SECURITY] [DSA 4628-1] php7.0 security update", "name": "20200219 [SECURITY] [DSA 4628-1] php7.0 security update",
"url": "https://seclists.org/bugtraq/2020/Feb/31" "url": "https://seclists.org/bugtraq/2020/Feb/31"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200221-0002/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200228 [SECURITY] [DLA 2124-1] php5 security update", "name": "[debian-lts-announce] 20200228 [SECURITY] [DLA 2124-1] php5 security update",
@ -142,7 +132,19 @@
"url": "https://security.gentoo.org/glsa/202003-57" "url": "https://security.gentoo.org/glsa/202003-57"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200221-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200221-0002/"
},
{
"refsource": "MISC",
"url": "https://bugs.php.net/bug.php?id=79037",
"name": "https://bugs.php.net/bug.php?id=79037"
} }
] ]
}, },

14
2020/7xxx/CVE-2020-7595.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c89076",
"refsource": "MISC",
"name": "https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c89076"
},
{ {
"refsource": "FEDORA", "refsource": "FEDORA",
"name": "FEDORA-2020-41fe1680f6", "name": "FEDORA-2020-41fe1680f6",
@ -82,13 +77,20 @@
"name": "openSUSE-SU-2020:0681", "name": "openSUSE-SU-2020:0681",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00047.html" "url": "http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00047.html"
}, },
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200702-0005/", "name": "https://security.netapp.com/advisory/ntap-20200702-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200702-0005/" "url": "https://security.netapp.com/advisory/ntap-20200702-0005/"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c89076",
"refsource": "MISC",
"name": "https://gitlab.gnome.org/GNOME/libxml2/commit/0e1a49c89076"
} }
] ]
} }

14
2020/8xxx/CVE-2020-8112.json
View File

@ -52,11 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://github.com/uclouvain/openjpeg/issues/1231",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/issues/1231"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200130 [SECURITY] [DLA 2089-1] openjpeg2 security update", "name": "[debian-lts-announce] 20200130 [SECURITY] [DLA 2089-1] openjpeg2 security update",
@ -98,7 +93,14 @@
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00008.html" "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00008.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://github.com/uclouvain/openjpeg/issues/1231",
"refsource": "MISC",
"name": "https://github.com/uclouvain/openjpeg/issues/1231"
} }
] ]
} }

8
2020/8xxx/CVE-2020-8172.json
View File

@ -44,6 +44,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"refsource": "MISC", "refsource": "MISC",
"name": "https://hackerone.com/reports/811502", "name": "https://hackerone.com/reports/811502",
@ -58,9 +63,6 @@
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200625-0002/", "name": "https://security.netapp.com/advisory/ntap-20200625-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200625-0002/" "url": "https://security.netapp.com/advisory/ntap-20200625-0002/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
}, },

28
2020/9xxx/CVE-2020-9327.json
View File

@ -52,6 +52,21 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "GENTOO",
"name": "GLSA-202003-16",
"url": "https://security.gentoo.org/glsa/202003-16"
},
{
"refsource": "UBUNTU",
"name": "USN-4298-1",
"url": "https://usn.ubuntu.com/4298-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{ {
"url": "https://www.sqlite.org/cgi/src/info/9d0d4ab95dc0c56e", "url": "https://www.sqlite.org/cgi/src/info/9d0d4ab95dc0c56e",
"refsource": "MISC", "refsource": "MISC",
@ -71,19 +86,6 @@
"refsource": "CONFIRM", "refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200313-0002/", "name": "https://security.netapp.com/advisory/ntap-20200313-0002/",
"url": "https://security.netapp.com/advisory/ntap-20200313-0002/" "url": "https://security.netapp.com/advisory/ntap-20200313-0002/"
},
{
"refsource": "GENTOO",
"name": "GLSA-202003-16",
"url": "https://security.gentoo.org/glsa/202003-16"
},
{
"refsource": "UBUNTU",
"name": "USN-4298-1",
"url": "https://usn.ubuntu.com/4298-1/"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html"
} }
] ]
} }

34
2020/9xxx/CVE-2020-9484.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[tomcat-users] 20200521 Re: [SECURITY] CVE-2020-9484 Apache Tomcat Remote Code Execution via session persistence", "name": "[tomcat-users] 20200521 Re: [SECURITY] CVE-2020-9484 Apache Tomcat Remote Code Execution via session persistence",
@ -74,11 +69,6 @@
"name": "[tomcat-dev] 20200527 Re: [SECURITY] CVE-2020-9484 Apache Tomcat Remote Code Execution via session persistence", "name": "[tomcat-dev] 20200527 Re: [SECURITY] CVE-2020-9484 Apache Tomcat Remote Code Execution via session persistence",
"url": "https://lists.apache.org/thread.html/r7bc247fffcb1d58415215c861d2354bd653c86266230d78a93c71ae2@%3Cdev.tomcat.apache.org%3E" "url": "https://lists.apache.org/thread.html/r7bc247fffcb1d58415215c861d2354bd653c86266230d78a93c71ae2@%3Cdev.tomcat.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200528-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200528-0005/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200528 [SECURITY] [DLA 2209-1] tomcat8 security update", "name": "[debian-lts-announce] 20200528 [SECURITY] [DLA 2209-1] tomcat8 security update",
@ -89,11 +79,6 @@
"name": "20200602 [CVE-2020-9484] Apache Tomcat RCE via PersistentManager", "name": "20200602 [CVE-2020-9484] Apache Tomcat RCE via PersistentManager",
"url": "http://seclists.org/fulldisclosure/2020/Jun/6" "url": "http://seclists.org/fulldisclosure/2020/Jun/6"
}, },
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/157924/Apache-Tomcat-CVE-2020-9484-Proof-Of-Concept.html",
"url": "http://packetstormsecurity.com/files/157924/Apache-Tomcat-CVE-2020-9484-Proof-Of-Concept.html"
},
{ {
"refsource": "GENTOO", "refsource": "GENTOO",
"name": "GLSA-202006-21", "name": "GLSA-202006-21",
@ -120,7 +105,24 @@
"url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00010.html" "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00010.html"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r77eae567ed829da9012cadb29af17f2df8fa23bf66faf88229857bb1%40%3Cannounce.tomcat.apache.org%3E"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200528-0005/",
"url": "https://security.netapp.com/advisory/ntap-20200528-0005/"
},
{
"refsource": "MISC",
"name": "http://packetstormsecurity.com/files/157924/Apache-Tomcat-CVE-2020-9484-Proof-Of-Concept.html",
"url": "http://packetstormsecurity.com/files/157924/Apache-Tomcat-CVE-2020-9484-Proof-Of-Concept.html"
} }
] ]
}, },

24
2020/9xxx/CVE-2020-9488.json
View File

@ -44,11 +44,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"refsource": "CONFIRM",
"name": "https://issues.apache.org/jira/browse/LOG4J2-2819",
"url": "https://issues.apache.org/jira/browse/LOG4J2-2819"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-issues] 20200504 [jira] [Created] (ZOOKEEPER-3817) owasp failing due to CVE-2020-9488", "name": "[zookeeper-issues] 20200504 [jira] [Created] (ZOOKEEPER-3817) owasp failing due to CVE-2020-9488",
@ -59,11 +54,6 @@
"name": "[zookeeper-dev] 20200504 [jira] [Created] (ZOOKEEPER-3817) owasp failing due to CVE-2020-9488", "name": "[zookeeper-dev] 20200504 [jira] [Created] (ZOOKEEPER-3817) owasp failing due to CVE-2020-9488",
"url": "https://lists.apache.org/thread.html/r2f209d271349bafd91537a558a279c08ebcff8fa3e547357d58833e6@%3Cdev.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/r2f209d271349bafd91537a558a279c08ebcff8fa3e547357d58833e6@%3Cdev.zookeeper.apache.org%3E"
}, },
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200504-0003/",
"url": "https://security.netapp.com/advisory/ntap-20200504-0003/"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-notifications] 20200504 Build failed in Jenkins: zookeeper-master-maven-owasp #489", "name": "[zookeeper-notifications] 20200504 Build failed in Jenkins: zookeeper-master-maven-owasp #489",
@ -145,7 +135,19 @@
"url": "https://lists.apache.org/thread.html/r48bcd06049c1779ef709564544c3d8a32ae6ee5c3b7281a606ac4463@%3Cjira.kafka.apache.org%3E" "url": "https://lists.apache.org/thread.html/r48bcd06049c1779ef709564544c3d8a32ae6ee5c3b7281a606ac4463@%3Cjira.kafka.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "CONFIRM",
"name": "https://issues.apache.org/jira/browse/LOG4J2-2819",
"url": "https://issues.apache.org/jira/browse/LOG4J2-2819"
},
{
"refsource": "CONFIRM",
"name": "https://security.netapp.com/advisory/ntap-20200504-0003/",
"url": "https://security.netapp.com/advisory/ntap-20200504-0003/"
} }
] ]
}, },

34
2020/9xxx/CVE-2020-9546.json
View File

@ -52,26 +52,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2631",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2631"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200305 [SECURITY] [DLA 2135-1] jackson-databind security update", "name": "[debian-lts-announce] 20200305 [SECURITY] [DLA 2135-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00008.html" "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00008.html"
}, },
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-issues] 20200307 [jira] [Created] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546", "name": "[zookeeper-issues] 20200307 [jira] [Created] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546",
@ -108,7 +93,24 @@
"url": "https://lists.apache.org/thread.html/rdd4df698d5d8e635144d2994922bf0842e933809eae259521f3b5097@%3Cissues.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/rdd4df698d5d8e635144d2994922bf0842e933809eae259521f3b5097@%3Cissues.zookeeper.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2631",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2631"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E"
} }
] ]
} }

84
2020/9xxx/CVE-2020-9547.json
View File

@ -52,26 +52,11 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2634",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2634"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200305 [SECURITY] [DLA 2135-1] jackson-databind security update", "name": "[debian-lts-announce] 20200305 [SECURITY] [DLA 2135-1] jackson-databind security update",
"url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00008.html" "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00008.html"
}, },
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-issues] 20200307 [jira] [Created] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546", "name": "[zookeeper-issues] 20200307 [jira] [Created] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546",
@ -87,41 +72,16 @@
"name": "[zookeeper-issues] 20200307 [jira] [Updated] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546", "name": "[zookeeper-issues] 20200307 [jira] [Updated] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546",
"url": "https://lists.apache.org/thread.html/rdd49ab9565bec436a896bc00c4b9fc9dce1598e106c318524fbdfec6@%3Cissues.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/rdd49ab9565bec436a896bc00c4b9fc9dce1598e106c318524fbdfec6@%3Cissues.zookeeper.apache.org%3E"
}, },
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/redbe4f1e21bf080f637cf9fbec47729750a2f443a919765360337428@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/redbe4f1e21bf080f637cf9fbec47729750a2f443a919765360337428@%3Cnotifications.zookeeper.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-dev] 20200307 Build failed in Jenkins: PreCommit-ZOOKEEPER-github-pr-build-maven #1898", "name": "[zookeeper-dev] 20200307 Build failed in Jenkins: PreCommit-ZOOKEEPER-github-pr-build-maven #1898",
"url": "https://lists.apache.org/thread.html/rd0e958d6d5c5ee16efed73314cd0e445c8dbb4bdcc80fc9d1d6c11fc@%3Cdev.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/rd0e958d6d5c5ee16efed73314cd0e445c8dbb4bdcc80fc9d1d6c11fc@%3Cdev.zookeeper.apache.org%3E"
}, },
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r742ef70d126548dcf7de5be5779355c9d76a9aec71d7a9ef02c6398a@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r742ef70d126548dcf7de5be5779355c9d76a9aec71d7a9ef02c6398a@%3Cnotifications.zookeeper.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-issues] 20200308 [jira] [Commented] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546", "name": "[zookeeper-issues] 20200308 [jira] [Commented] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546",
"url": "https://lists.apache.org/thread.html/r35d30db00440ef63b791c4b7f7acb036e14d4a23afa2a249cb66c0fd@%3Cissues.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/r35d30db00440ef63b791c4b7f7acb036e14d4a23afa2a249cb66c0fd@%3Cissues.zookeeper.apache.org%3E"
}, },
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/ra3e90712f2d59f8cef03fa796f5adf163d32b81fe7b95385f21790e6@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/ra3e90712f2d59f8cef03fa796f5adf163d32b81fe7b95385f21790e6@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r4accb2e0de9679174efd3d113a059bab71ff3ec53e882790d21c1cc1@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r4accb2e0de9679174efd3d113a059bab71ff3ec53e882790d21c1cc1@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/rc0d5d0f72da1ed6fc5e438b1ddb3fa090c73006b55f873cf845375ab@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/rc0d5d0f72da1ed6fc5e438b1ddb3fa090c73006b55f873cf845375ab@%3Cnotifications.zookeeper.apache.org%3E"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[zookeeper-issues] 20200319 [jira] [Commented] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546", "name": "[zookeeper-issues] 20200319 [jira] [Commented] (ZOOKEEPER-3750) update jackson-databind to address CVE-2020-9547, CVE-2020-9548, CVE-2020-9546",
@ -138,7 +98,49 @@
"url": "https://lists.apache.org/thread.html/rdd4df698d5d8e635144d2994922bf0842e933809eae259521f3b5097@%3Cissues.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/rdd4df698d5d8e635144d2994922bf0842e933809eae259521f3b5097@%3Cissues.zookeeper.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r893a0104e50c1c2559eb9a5812add28ae8c3e5f43712947a9847ec18@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2634",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2634"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/redbe4f1e21bf080f637cf9fbec47729750a2f443a919765360337428@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/redbe4f1e21bf080f637cf9fbec47729750a2f443a919765360337428@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r742ef70d126548dcf7de5be5779355c9d76a9aec71d7a9ef02c6398a@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r742ef70d126548dcf7de5be5779355c9d76a9aec71d7a9ef02c6398a@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/ra3e90712f2d59f8cef03fa796f5adf163d32b81fe7b95385f21790e6@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/ra3e90712f2d59f8cef03fa796f5adf163d32b81fe7b95385f21790e6@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/r4accb2e0de9679174efd3d113a059bab71ff3ec53e882790d21c1cc1@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/r4accb2e0de9679174efd3d113a059bab71ff3ec53e882790d21c1cc1@%3Cnotifications.zookeeper.apache.org%3E"
},
{
"refsource": "MISC",
"name": "https://lists.apache.org/thread.html/rc0d5d0f72da1ed6fc5e438b1ddb3fa090c73006b55f873cf845375ab@%3Cnotifications.zookeeper.apache.org%3E",
"url": "https://lists.apache.org/thread.html/rc0d5d0f72da1ed6fc5e438b1ddb3fa090c73006b55f873cf845375ab@%3Cnotifications.zookeeper.apache.org%3E"
} }
] ]
} }

24
2020/9xxx/CVE-2020-9548.json
View File

@ -52,16 +52,6 @@
}, },
"references": { "references": {
"reference_data": [ "reference_data": [
{
"url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2634",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2634"
},
{ {
"refsource": "MLIST", "refsource": "MLIST",
"name": "[debian-lts-announce] 20200305 [SECURITY] [DLA 2135-1] jackson-databind security update", "name": "[debian-lts-announce] 20200305 [SECURITY] [DLA 2135-1] jackson-databind security update",
@ -103,7 +93,19 @@
"url": "https://lists.apache.org/thread.html/rdd4df698d5d8e635144d2994922bf0842e933809eae259521f3b5097@%3Cissues.zookeeper.apache.org%3E" "url": "https://lists.apache.org/thread.html/rdd4df698d5d8e635144d2994922bf0842e933809eae259521f3b5097@%3Cissues.zookeeper.apache.org%3E"
}, },
{ {
"url": "https://www.oracle.com/security-alerts/cpujul2020.html" "url": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062",
"refsource": "MISC",
"name": "https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2020.html",
"refsource": "MISC",
"name": "https://www.oracle.com/security-alerts/cpujul2020.html"
},
{
"url": "https://github.com/FasterXML/jackson-databind/issues/2634",
"refsource": "MISC",
"name": "https://github.com/FasterXML/jackson-databind/issues/2634"
} }
] ]
} }