admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-05-07 03:02:46 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-11-07 22:01:24 +00:00
parent ed4b94940c
commit f08f509bf6
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
12 changed files with 369 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

60
2007/3xxx/CVE-2007-3732.json
View File

@ -1,8 +1,31 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2007-3732",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "linux-2.6",
"product": {
"product_data": [
{
"product_name": "linux-2.6",
"version": {
"version_data": [
{
"version_value": "2.6 before 2.6.23"
}
]
}
}
]
}
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,38 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "In Linux 2.6 before 2.6.23, the TRACE_IRQS_ON function in iret_exc calls a C function without ensuring that the segments are set properly. The kernel's %fs needs to be restored before the call in TRACE_IRQS_ON and before enabling interrupts, so that \"current\" references work. Without this, \"current\" used in the window between iret_exc and the middle of error_code where %fs is reset, would crash."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Reset %fs early in iret_exc"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://security-tracker.debian.org/tracker/CVE-2007-3732",
"refsource": "MISC",
"name": "https://security-tracker.debian.org/tracker/CVE-2007-3732"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2007-3732",
"refsource": "MISC",
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2007-3732"
},
{
"url": "https://access.redhat.com/security/cve/cve-2007-3732",
"refsource": "MISC",
"name": "https://access.redhat.com/security/cve/cve-2007-3732"
}
]
}

48
2007/3xxx/CVE-2007-3915.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-3915",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,28 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Mondo 2.24 has insecure handling of temporary files."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://security-tracker.debian.org/tracker/CVE-2007-3915",
"refsource": "MISC",
"name": "https://security-tracker.debian.org/tracker/CVE-2007-3915"
}
]
}

53
2007/5xxx/CVE-2007-5743.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2007-5743",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,33 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "viewvc 1.0.3 allows improper access control to files in a repository when using the \"forbidden\" configuration option."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://security-tracker.debian.org/tracker/CVE-2007-5743",
"refsource": "MISC",
"name": "https://security-tracker.debian.org/tracker/CVE-2007-5743"
},
{
"refsource": "MISC",
"name": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=416696",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=416696"
}
]
}

65
2013/1xxx/CVE-2013-1429.json
View File

@ -1,8 +1,31 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ASSIGNER": "security@debian.org",
"ID": "CVE-2013-1429",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "lintian",
"product": {
"product_data": [
{
"product_name": "lintian",
"version": {
"version_data": [
{
"version_value": "2.5.12"
}
]
}
}
]
}
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,43 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "Lintian before 2.5.12 allows remote attackers to gather information about the \"host\" system using crafted symlinks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Symbolic Link Following"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://security-tracker.debian.org/tracker/CVE-2013-1429",
"refsource": "MISC",
"name": "https://security-tracker.debian.org/tracker/CVE-2013-1429"
},
{
"refsource": "MISC",
"name": "https://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-1429.html",
"url": "https://people.canonical.com/~ubuntu-security/cve/2013/CVE-2013-1429.html"
},
{
"refsource": "MISC",
"name": "https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1113881.html",
"url": "https://www.mail-archive.com/debian-bugs-dist@lists.debian.org/msg1113881.html"
},
{
"refsource": "MISC",
"name": "https://bugs.launchpad.net/ubuntu/+source/lintian/+bug/1169636",
"url": "https://bugs.launchpad.net/ubuntu/+source/lintian/+bug/1169636"
}
]
}

58
2013/1xxx/CVE-2013-1751.json
View File

@ -2,7 +2,30 @@
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-1751",
"STATE": "RESERVED"
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
@ -11,7 +34,38 @@
"description_data": [
{
"lang": "eng",
"value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
"value": "TWiki before 5.1.4 allows remote attackers to execute arbitrary shell commands by sending a crafted '%MAKETEXT{}%' parameter value containing Perl backtick characters."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://security-tracker.debian.org/tracker/CVE-2013-1751",
"refsource": "MISC",
"name": "https://security-tracker.debian.org/tracker/CVE-2013-1751"
},
{
"refsource": "MISC",
"name": "http://www.securitytracker.com/id/1028149",
"url": "http://www.securitytracker.com/id/1028149"
},
{
"refsource": "CONFIRM",
"name": "https://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2013-1751",
"url": "https://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2013-1751"
}
]
}

67
2019/18xxx/CVE-2019-18818.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-18818",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "strapi before 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/strapi-plugin-users-permissions/controllers/Auth.js."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/strapi/strapi/pull/4443",
"refsource": "MISC",
"name": "https://github.com/strapi/strapi/pull/4443"
},
{
"url": "https://github.com/strapi/strapi/releases/tag/v3.0.0-beta.17.5",
"refsource": "MISC",
"name": "https://github.com/strapi/strapi/releases/tag/v3.0.0-beta.17.5"
}
]
}
}

5
2019/9xxx/CVE-2019-9232.json
View File

@ -58,6 +58,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/11/07/1"
}
]
},

5
2019/9xxx/CVE-2019-9278.json
View File

@ -58,6 +58,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/11/07/1"
}
]
},

5
2019/9xxx/CVE-2019-9325.json
View File

@ -58,6 +58,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/11/07/1"
}
]
},

5
2019/9xxx/CVE-2019-9371.json
View File

@ -58,6 +58,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/11/07/1"
}
]
},

5
2019/9xxx/CVE-2019-9423.json
View File

@ -58,6 +58,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/11/07/1"
}
]
},

5
2019/9xxx/CVE-2019-9433.json
View File

@ -58,6 +58,11 @@
"refsource": "MLIST",
"name": "[oss-security] 20191026 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/10/27/1"
},
{
"refsource": "MLIST",
"name": "[oss-security] 20191107 Re: Security fixes from Android 10 release which are relevant outside the Android ecosystem?",
"url": "http://www.openwall.com/lists/oss-security/2019/11/07/1"
}
]
},