"-Synchronized-Data."

2025-05-08 11:37:04 +00:00 · 2020-04-28 00:01:26 +00:00 · 2020-04-28 00:01:26 +00:00 · da2a4e68ee
commit da2a4e68ee
parent ebc3feebd4
14 changed files with 76 additions and 11 deletions
--- a/2009/4xxx/CVE-2009-4112.json
+++ b/2009/4xxx/CVE-2009-4112.json
@ -91,6 +91,11 @@
                "refsource": "SUSE",
                "name": "openSUSE-SU-2020:0284",
                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00005.html"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2018/20xxx/CVE-2018-20723.json
+++ b/2018/20xxx/CVE-2018-20723.json
@ -76,6 +76,11 @@
                "refsource": "SUSE",
                "name": "openSUSE-SU-2020:0284",
                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00005.html"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2018/20xxx/CVE-2018-20724.json
+++ b/2018/20xxx/CVE-2018-20724.json
@ -76,6 +76,11 @@
                "refsource": "SUSE",
                "name": "openSUSE-SU-2020:0284",
                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00005.html"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2018/20xxx/CVE-2018-20725.json
+++ b/2018/20xxx/CVE-2018-20725.json
@ -76,6 +76,11 @@
                "refsource": "SUSE",
                "name": "openSUSE-SU-2020:0284",
                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00005.html"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2018/20xxx/CVE-2018-20726.json
+++ b/2018/20xxx/CVE-2018-20726.json
@ -76,6 +76,11 @@
                "refsource": "SUSE",
                "name": "openSUSE-SU-2020:0284",
                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00005.html"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2019/15xxx/CVE-2019-15790.json
+++ b/2019/15xxx/CVE-2019-15790.json
@ -71,7 +71,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Apport reads and writes information on a crashed process to /proc/pid with elevated privileges. Apport then determines which user the crashed process belongs to by reading /proc/pid through get_pid_info() in data/apport. An unprivileged user could exploit this to read information about a privileged running process by exploiting PID recycling. This information could then be used to obtain ASLR offsets for a process with an existing memory corruption vulnerability. The initial fix introduced regressions  in the Python Apport library due to a missing argument in Report.add_proc_environ in apport/report.py. It also caused an autopkgtest failure when reading /proc/pid and with Python 2 compatibility by reading /proc maps. The initial and subsequent regression fixes are in 2.20.11-0ubuntu16, 2.20.11-0ubuntu8.6, 2.20.9-0ubuntu7.12, 2.20.1-0ubuntu2.22 and 2.14.1-0ubuntu3.29+esm3."
+                "value": "Apport reads and writes information on a crashed process to /proc/pid with elevated privileges. Apport then determines which user the crashed process belongs to by reading /proc/pid through get_pid_info() in data/apport. An unprivileged user could exploit this to read information about a privileged running process by exploiting PID recycling. This information could then be used to obtain ASLR offsets for a process with an existing memory corruption vulnerability. The initial fix introduced regressions in the Python Apport library due to a missing argument in Report.add_proc_environ in apport/report.py. It also caused an autopkgtest failure when reading /proc/pid and with Python 2 compatibility by reading /proc maps. The initial and subsequent regression fixes are in 2.20.11-0ubuntu16, 2.20.11-0ubuntu8.6, 2.20.9-0ubuntu7.12, 2.20.1-0ubuntu2.22 and 2.14.1-0ubuntu3.29+esm3."
            }
        ]
    },
@ -110,48 +110,48 @@
    "references": {
        "reference_data": [
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1839795",
                "url": "https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1839795"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://usn.ubuntu.com/4171-1/",
                "url": "https://usn.ubuntu.com/4171-1/"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://usn.ubuntu.com/4171-2/",
                "url": "https://usn.ubuntu.com/4171-2/"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://usn.ubuntu.com/4171-3/",
                "url": "https://usn.ubuntu.com/4171-3/"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://usn.ubuntu.com/4171-4/",
                "url": "https://usn.ubuntu.com/4171-4/"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://usn.ubuntu.com/4171-5/",
                "url": "https://usn.ubuntu.com/4171-5/"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1850929",
                "url": "https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1850929"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1851806",
                "url": "https://bugs.launchpad.net/ubuntu/+source/apport/+bug/1851806"
            },
            {
-                "name": "",
                "refsource": "CONFIRM",
+                "name": "https://bugs.launchpad.net/apport/+bug/1854237",
                "url": "https://bugs.launchpad.net/apport/+bug/1854237"
            }
        ]
--- a/2019/16xxx/CVE-2019-16723.json
+++ b/2019/16xxx/CVE-2019-16723.json
@ -91,6 +91,11 @@
                "refsource": "GENTOO",
                "name": "GLSA-202003-40",
                "url": "https://security.gentoo.org/glsa/202003-40"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2019/17xxx/CVE-2019-17357.json
+++ b/2019/17xxx/CVE-2019-17357.json
@ -81,6 +81,11 @@
                "refsource": "GENTOO",
                "name": "GLSA-202003-40",
                "url": "https://security.gentoo.org/glsa/202003-40"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    },
--- a/2019/17xxx/CVE-2019-17358.json
+++ b/2019/17xxx/CVE-2019-17358.json
@ -111,6 +111,11 @@
                "refsource": "GENTOO",
                "name": "GLSA-202003-40",
                "url": "https://security.gentoo.org/glsa/202003-40"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    },
--- a/2019/20xxx/CVE-2019-20787.json
+++ b/2019/20xxx/CVE-2019-20787.json
@ -56,6 +56,11 @@
                "url": "https://www.teeworlds.com/forum/viewtopic.php?pid=123860",
                "refsource": "MISC",
                "name": "https://www.teeworlds.com/forum/viewtopic.php?pid=123860"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0557",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00044.html"
            }
        ]
    }
--- a/2020/12xxx/CVE-2020-12066.json
+++ b/2020/12xxx/CVE-2020-12066.json
@ -61,6 +61,11 @@
                "url": "https://github.com/teeworlds/teeworlds/commit/c68402fa7e279d42886d5951d1ea8ac2facc1ea5",
                "refsource": "MISC",
                "name": "https://github.com/teeworlds/teeworlds/commit/c68402fa7e279d42886d5951d1ea8ac2facc1ea5"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0557",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00044.html"
            }
        ]
    }
--- a/2020/7xxx/CVE-2020-7106.json
+++ b/2020/7xxx/CVE-2020-7106.json
@ -86,6 +86,11 @@
                "refsource": "GENTOO",
                "name": "GLSA-202003-40",
                "url": "https://security.gentoo.org/glsa/202003-40"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2020/7xxx/CVE-2020-7237.json
+++ b/2020/7xxx/CVE-2020-7237.json
@ -86,6 +86,11 @@
                "refsource": "GENTOO",
                "name": "GLSA-202003-40",
                "url": "https://security.gentoo.org/glsa/202003-40"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }
--- a/2020/8xxx/CVE-2020-8813.json
+++ b/2020/8xxx/CVE-2020-8813.json
@ -106,6 +106,11 @@
                "refsource": "FEDORA",
                "name": "FEDORA-2020-d6a9e27bb1",
                "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WAX3LDXPIKWNBGVZSIMZV7LI5K6BZRTO/"
+            },
+            {
+                "refsource": "SUSE",
+                "name": "openSUSE-SU-2020:0558",
+                "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00042.html"
            }
        ]
    }