"-Synchronized-Data."

2025-12-30 05:58:39 +00:00 · 2020-10-29 15:01:52 +00:00 · 2020-10-29 15:01:52 +00:00 · edcfb8cf57
commit edcfb8cf57
parent 86812be725
3 changed files with 25 additions and 6 deletions
--- a/2018/20xxx/CVE-2018-20406.json
+++ b/2018/20xxx/CVE-2018-20406.json
@ -34,7 +34,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Modules/_pickle.c in Python before 3.7.1 has an integer overflow via a large LONG_BINPUT value that is mishandled during a \"resize to twice the size\" attempt. This issue might cause memory exhaustion, but is only relevant if the pickle format is used for serializing tens or hundreds of gigabytes of data."
+                "value": "Modules/_pickle.c in Python before 3.7.1 has an integer overflow via a large LONG_BINPUT value that is mishandled during a \"resize to twice the size\" attempt. This issue might cause memory exhaustion, but is only relevant if the pickle format is used for serializing tens or hundreds of gigabytes of data. This issue is fixed in: v3.4.10, v3.4.10rc1; v3.5.10, v3.5.10rc1, v3.5.7, v3.5.7rc1, v3.5.8, v3.5.8rc1, v3.5.8rc2, v3.5.9; v3.6.10, v3.6.10rc1, v3.6.11, v3.6.11rc1, v3.6.12, v3.6.7, v3.6.7rc1, v3.6.7rc2, v3.6.8, v3.6.8rc1, v3.6.9, v3.6.9rc1; v3.7.1, v3.7.1rc1, v3.7.1rc2, v3.7.2, v3.7.2rc1, v3.7.3, v3.7.3rc1, v3.7.4, v3.7.4rc1, v3.7.4rc2, v3.7.5, v3.7.5rc1, v3.7.6, v3.7.6rc1, v3.7.7, v3.7.7rc1, v3.7.8, v3.7.8rc1, v3.7.9."
            }
        ]
    },
--- a/2020/27xxx/CVE-2020-27992.json
+++ b/2020/27xxx/CVE-2020-27992.json
@ -0,0 +1,18 @@
+{
+    "data_type": "CVE",
+    "data_format": "MITRE",
+    "data_version": "4.0",
+    "CVE_data_meta": {
+        "ID": "CVE-2020-27992",
+        "ASSIGNER": "cve@mitre.org",
+        "STATE": "RESERVED"
+    },
+    "description": {
+        "description_data": [
+            {
+                "lang": "eng",
+                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
+            }
+        ]
+    }
+}
--- a/2020/7xxx/CVE-2020-7384.json
+++ b/2020/7xxx/CVE-2020-7384.json
@ -1,6 +1,6 @@
 {
    "CVE_data_meta": {
-        "ASSIGNER": "cve@rapid7.con",
+        "ASSIGNER": "cve@rapid7.com",
        "ID": "CVE-2020-7384",
        "STATE": "PUBLIC",
        "TITLE": "Client-Side Command Injection in Rapid7 Metasploit "
@ -42,7 +42,7 @@
        "description_data": [
            {
                "lang": "eng",
-                "value": "Rapid7's Metasploit msfvenom framework handles APK files in a way that allows for a malicious user to craft and publish a file that would execute arbitrary commands on a victim's machine. "
+                "value": "Rapid7's Metasploit msfvenom framework handles APK files in a way that allows for a malicious user to craft and publish a file that would execute arbitrary commands on a victim's machine."
            }
        ]
    },
@ -80,12 +80,13 @@
    "references": {
        "reference_data": [
            {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/rapid7/metasploit-framework/pull/14288"
+                "refsource": "MISC",
+                "url": "https://github.com/rapid7/metasploit-framework/pull/14288",
+                "name": "https://github.com/rapid7/metasploit-framework/pull/14288"
            }
        ]
    },
    "source": {
        "discovery": "EXTERNAL"
    }
-}
+}