admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2018/6xxx/CVE-2018-6339.json
CVE Team 19b42ef5c6
"-Synchronized-Data."
2019-06-14 18:00:54 +00:00

91 lines
3.6 KiB
JSON
Raw Blame History

{
"CVE_data_meta": {
"ASSIGNER": "cve-assign@fb.com",
"DATE_ASSIGNED": "2018-12-30",
"ID": "CVE-2018-6339",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WhatsApp for Android",
"version": {
"version_data": [
{
"version_affected": "!=>",
"version_value": "2.18.295"
},
{
"version_affected": ">=",
"version_value": "2.18.180"
},
{
"version_affected": "!<",
"version_value": "2.18.180"
}
]
}
},
{
"product_name": "WhatsApp Business for Android",
"version": {
"version_data": [
{
"version_affected": "!=>",
"version_value": "2.18.150"
},
{
"version_affected": ">=",
"version_value": "2.18.103"
},
{
"version_affected": "!<",
"version_value": "2.18.103"
}
]
}
}
]
},
"vendor_name": "Facebook"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "When receiving calls using WhatsApp on Android, a stack allocation failed to properly account for the amount of data being passed in. An off-by-one error meant that data was written beyond the allocated space on the stack. This issue affects WhatsApp for Android starting in version 2.18.180 and was fixed in version 2.18.295. It also affects WhatsApp Business for Android starting in version v2.18.103 and was fixed in version v2.18.150."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Stack-based Buffer Overflow (CWE-121)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.facebook.com/security/advisories/cve-2018-6339/",
"refsource": "MISC",
"url": "https://www.facebook.com/security/advisories/cve-2018-6339/"
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink