{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-9658", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "Checkstyle before 8.18 loads external DTDs by default." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "https://github.com/checkstyle/checkstyle/pull/6476", "refsource": "MISC", "url": "https://github.com/checkstyle/checkstyle/pull/6476" }, { "name": "https://github.com/checkstyle/checkstyle/issues/6474", "refsource": "MISC", "url": "https://github.com/checkstyle/checkstyle/issues/6474" }, { "name": "https://github.com/checkstyle/checkstyle/issues/6478", "refsource": "MISC", "url": "https://github.com/checkstyle/checkstyle/issues/6478" }, { "name": "https://checkstyle.org/releasenotes.html#Release_8.18", "refsource": "MISC", "url": "https://checkstyle.org/releasenotes.html#Release_8.18" }, { "refsource": "MLIST", "name": "[james-server-dev] 20190318 [james-project] 01/03: JAMES-2693 Update com.puppycrawl.tools:checkstyle to respond to CVE-2019-9658", "url": "https://lists.apache.org/thread.html/7eea10e7be4c21060cb1e79f6524c6e6559ba833b1465cd2870a56b9@%3Cserver-dev.james.apache.org%3E" }, { "refsource": "FEDORA", "name": "FEDORA-2019-a3f67e2364", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AEYBAHYAV37WHMOXZYM2ZWF46FHON6YC/" }, { "refsource": "FEDORA", "name": "FEDORA-2019-e4405b4c9f", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VJPT54USMGWT3Y6XVXLDEHKRUY2EI4OE/" }, { "refsource": "MLIST", "name": "[debian-lts-announce] 20190428 [SECURITY] [DLA 1768-1] checkstyle security update", "url": "https://lists.debian.org/debian-lts-announce/2019/04/msg00029.html" }, { "refsource": "FEDORA", "name": "FEDORA-2019-4696630d6f", "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2BMOPJ2XYE4LB2HM7OMSUBBIYEDUTLWE/" }, { "refsource": "MLIST", "name": "[accumulo-notifications] 20190612 [GitHub] [accumulo-testing] milleruntime opened a new pull request #80: Update checkstyle", "url": "https://lists.apache.org/thread.html/a35a8ccb316d4c2340710f610cba8058e87d5376259b35ef3ed2bf89@%3Cnotifications.accumulo.apache.org%3E" }, { "refsource": "MLIST", "name": "[fluo-notifications] 20190814 [GitHub] [fluo] ctubbsii merged pull request #1073: Update checkstyle (CVE-2019-9658)", "url": "https://lists.apache.org/thread.html/fff26ee7b59360a0264fef4e8ed9454ef652db2c39f2892a9ea1c9cb@%3Cnotifications.fluo.apache.org%3E" }, { "refsource": "MLIST", "name": "[fluo-commits] 20190814 [fluo] branch fluo-parent updated: Update checkstyle (CVE-2019-9658) (#1073)", "url": "https://lists.apache.org/thread.html/6bf8bbbca826e883f09ba40bc0d319350e1d6d4cf4df7c9e399b2699@%3Ccommits.fluo.apache.org%3E" }, { "refsource": "MLIST", "name": "[fluo-notifications] 20190815 Build failed in Jenkins: Fluo Parent Pom #101", "url": "https://lists.apache.org/thread.html/994221405e940e148adcfd9cb24ffc6700bed70c7820c55a22559d26@%3Cnotifications.fluo.apache.org%3E" } ] } }