Publish CVE-2019-11921

2025-08-04 08:44:25 +00:00 · 2019-07-25 12:51:58 -07:00 · 2019-07-25 12:51:58 -07:00 · e6f7e9039b
commit e6f7e9039b
parent c74f6a95c6
1 changed files with 61 additions and 6 deletions
--- a/2019/11xxx/CVE-2019-11921.json
+++ b/2019/11xxx/CVE-2019-11921.json
@ -1,17 +1,72 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
    "CVE_data_meta": {
+        "ASSIGNER": "cve-assign@fb.com",
+        "DATE_ASSIGNED": "2019-07-24",
        "ID": "CVE-2019-11921",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
+        "STATE": "PUBLIC"
    },
+    "affects": {
+        "vendor": {
+            "vendor_data": [
+                {
+                    "product": {
+                        "product_data": [
+                            {
+                                "product_name": "Proxygen",
+                                "version": {
+                                    "version_data": [
+                                        {
+                                            "version_affected": "!=>",
+                                            "version_value": "v2019.07.22.00"
+                                        },
+                                        {
+                                            "version_affected": "<",
+                                            "version_value": "v2019.07.22.00"
+                                        }
+                                    ]
+                                }
+                            }
+                        ]
+                    },
+                    "vendor_name": "Facebook"
+                }
+            ]
+        }
+    },
+    "data_format": "MITRE",
+    "data_type": "CVE",
+    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+                "value": "An out of bounds write is possible via a specially crafted packet in certain configurations of Proxygen due to improper handling of Base64 when parsing malformed binary content in Structured HTTP Headers. This issue affects versions of proxygen prior to v2019.07.22.00."
+            }
+        ]
+    },
+    "problemtype": {
+        "problemtype_data": [
+            {
+                "description": [
+                    {
+                        "lang": "eng",
+                        "value": "Out-of-bounds Write (CWE-ID 787)"
+                    }
+                ]
+            }
+        ]
+    },
+    "references": {
+        "reference_data": [
+            {
+                "name": "https://github.com/facebook/proxygen/commit/2f07985bef9fbae124cc63e5c0272e32da4fdaec",
+                "refsource": "MISC",
+                "url": "https://github.com/facebook/proxygen/commit/2f07985bef9fbae124cc63e5c0272e32da4fdaec"
+            },
+            {
+                "name": "https://www.facebook.com/security/advisories/cve-2019-11921",
+                "refsource": "CONFIRM",
+                "url": "https://www.facebook.com/security/advisories/cve-2019-11921"
            }
        ]
    }