Skip to content

Commit

Permalink
Publish Advisories
Browse files Browse the repository at this point in the history 
GHSA-4644-hg35-55m9
GHSA-wv88-pf73-x22p
GHSA-4644-hg35-55m9
  • Loading branch information
@advisory-database
advisory-database[bot] committed Jul 13, 2022
1 parent 7e33e1f commit 1689d46
Show file tree
Hide file tree
Showing 3 changed files with 147 additions and 70 deletions.
79 changes: 79 additions & 0 deletions advisories/github-reviewed/2022/05/GHSA-4644-hg35-55m9/GHSA-4644-hg35-55m9.json
View file
@@ -0,0 +1,79 @@
{
"schema_version": "1.2.0",
"id": "GHSA-4644-hg35-55m9",
"modified": "2022-07-13T17:46:37Z",
"published": "2022-05-17T04:59:50Z",
"aliases": [
"CVE-2011-2731"
],
"summary": "Concurrent Execution using Shared Resource with Improper Synchronization in Spring Security",
"details": "Race condition in the RunAsManager mechanism in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 stores the Authentication object in the shared security context, which allows attackers to gain privileges via a crafted thread.",
"severity": [

],
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.springframework.security:spring-security-core"
},
"ranges": [
{
"type": "ECOSYSTEM",
"events": [
{
"introduced": "0"
},
{
"fixed": "2.0.7"
}
]
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.springframework.security:spring-security-core"
},
"ranges": [
{
"type": "ECOSYSTEM",
"events": [
{
"introduced": "3.0.0"
},
{
"fixed": "3.0.6"
}
]
}
]
}
],
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-2731"
},
{
"type": "WEB",
"url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=677814"
},
{
"type": "WEB",
"url": "http://support.springsource.com/security/cve-2011-2731"
},
{
"type": "PACKAGE",
"url": "https://github.com/spring-projects/spring-security"
}
],
"database_specific": {
"cwe_ids": [
"CWE-362"
],
"severity": "MODERATE",
"github_reviewed": true
}
}
93 changes: 68 additions & 25 deletions ...A-wv88-pf73-x22p/GHSA-wv88-pf73-x22p.json → ...A-wv88-pf73-x22p/GHSA-wv88-pf73-x22p.json
View file
@@ -1,17 +1,80 @@
{
"schema_version": "1.2.0",
"id": "GHSA-wv88-pf73-x22p",
"modified": "2022-05-17T02:16:01Z",
"modified": "2022-07-13T17:45:52Z",
"published": "2022-05-17T02:16:01Z",
"aliases": [
"CVE-2011-2730"
],
"summary": "Improper Neutralization of Directives in Dynamically Evaluated Code in Spring Framework",
"details": "VMware SpringSource Spring Framework before 2.5.6.SEC03, 2.5.7.SR023, and 3.x before 3.0.6, when a container supports Expression Language (EL), evaluates EL expressions in tags twice, which allows remote attackers to obtain sensitive information via a (1) name attribute in a (a) spring:hasBindErrors tag; (2) path attribute in a (b) spring:bind or (c) spring:nestedpath tag; (3) arguments, (4) code, (5) text, (6) var, (7) scope, or (8) message attribute in a (d) spring:message or (e) spring:theme tag; or (9) var, (10) scope, or (11) value attribute in a (f) spring:transform tag, aka \"Expression Language Injection.\"",
"severity": [

],
"affected": [

{
"package": {
"ecosystem": "Maven",
"name": "org.springframework:spring-core"
},
"ranges": [
{
"type": "ECOSYSTEM",
"events": [
{
"introduced": "3.0.0"
},
{
"fixed": "3.0.6"
}
]
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.springframework:spring-core"
},
"ranges": [
{
"type": "ECOSYSTEM",
"events": [
{
"introduced": "0"
},
{
"fixed": "2.5.6.SEC03"
}
]
}
],
"database_specific": {
"last_known_affected_version_range": "<= 2.5.6.SEC02"
}
},
{
"package": {
"ecosystem": "Maven",
"name": "org.springframework:spring-core"
},
"ranges": [
{
"type": "ECOSYSTEM",
"events": [
{
"introduced": "2.5.7.SR0"
},
{
"fixed": "2.5.7.SR023"
}
]
}
],
"database_specific": {
"last_known_affected_version_range": "<= 2.5.7.SR022"
}
}
],
"references": [
{
Expand Down Expand Up @@ -50,10 +113,6 @@
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0196.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0197.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0198.html"
Expand All @@ -66,22 +125,6 @@
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0533.html"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/51984"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/52054"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/55155"
},
{
"type": "WEB",
"url": "http://support.springsource.com/security/cve-2011-2730"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2012/dsa-2504"
Expand All @@ -91,15 +134,15 @@
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1029151"
"type": "PACKAGE",
"url": "https://github.com/spring-projects/spring-framework"
}
],
"database_specific": {
"cwe_ids": [

],
"severity": "HIGH",
"github_reviewed": false
"github_reviewed": true
}
}
45 changes: 0 additions & 45 deletions advisories/unreviewed/2022/05/GHSA-4644-hg35-55m9/GHSA-4644-hg35-55m9.json
View file

This file was deleted.

0 comments on commit 1689d46

Please sign in to comment.