Vulnerability Change Records for CVE-2019-16942

Change History

CVE Modified by MITRE 10/11/2019 11:15:14 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TH5VFUN4P7CCIP7KSEXYA5MUTFCUDUJT/ [No Types Assigned]

CVE Modified by MITRE 10/07/2019 8:15:11 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://seclists.org/bugtraq/2019/Oct/6 [No Types Assigned]

CVE Modified by MITRE 2/06/2020 7:15:10 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0445 [No Types Assigned]

CVE Modified by MITRE 1/21/2020 3:15:10 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0159 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0160 [No Types Assigned]
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0161 [No Types Assigned]

CVE Modified by MITRE 11/18/2019 2:15:13 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2019:3901 [No Types Assigned]

CVE Modified by MITRE 7/14/2020 11:15:44 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpujul2020.html [No Types Assigned]

CVE Modified by MITRE 4/15/2020 5:15:31 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuapr2020.html [No Types Assigned]

CVE Modified by MITRE 10/26/2019 4:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/f9bc3e55f4e28d1dcd1a69aae6d53e609a758e34d2869b4d798e13cc@%3Cissues.drill.apache.org%3E [No Types Assigned]
Added Reference

								
							
							
						
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/Q7CANA7KV53JROZDX5Z5P26UG5VN2K43/ [No Types Assigned]

CVE Modified by MITRE 10/17/2019 6:15:15 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/b0656d359c7d40ec9f39c8cc61bca66802ef9a2a12ee199f5b0c1442@%3Cdev.drill.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 1/15/2020 3:15:23 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpujan2020.html [No Types Assigned]

CVE Modified by MITRE 10/21/2019 12:15:17 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/519eb0fd45642dcecd9ff74cb3e71c20a4753f7d82e2f07864b5108f@%3Cdev.drill.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 1/21/2020 1:15:11 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://access.redhat.com/errata/RHSA-2020:0164 [No Types Assigned]

CVE Modified by MITRE 10/06/2019 11:15:13 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.debian.org/security/2019/dsa-4542 [No Types Assigned]

CVE Modified by MITRE 7/29/2020 8:15:17 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/r1b103833cb5bc8466e24ff0ecc5e75b45a705334ab6a444e64e840a0@%3Cissues.bookkeeper.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 12/30/2019 4:15:11 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/a430dbc9be874c41314cc69e697384567a9a24025e819d9485547954@%3Cissues.geode.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 8/31/2020 10:15:15 AM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/rf1bbc0ea4a9f014cf94df9a12a6477d24a27f52741dbc87f2fd52ff2@%3Cissues.geode.apache.org%3E [No Types Assigned]

CWE Remap 8/24/2020 1:37:01 PM

Action Type Old Value New Value
Changed CWE
CWE-20
CWE-502

CVE Modified by MITRE 10/17/2019 12:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://security.netapp.com/advisory/ntap-20191017-0006/ [No Types Assigned]

CVE Modified by MITRE 10/08/2019 3:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/b2e23c94f9dfef53e04c492e5d02e5c75201734be7adc73a49ef2370@%3Cissues.geode.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 10/11/2019 3:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.apache.org/thread.html/7782a937c9259a58337ee36b2961f00e2d744feafc13084e176d0df5@%3Cissues.geode.apache.org%3E [No Types Assigned]

CVE Modified by MITRE 10/02/2019 9:15:10 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html [No Types Assigned]

Initial Analysis 10/08/2019 1:36:18 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:fasterxml:jackson-databind:*:*:*:*:*:*:*:* versions from (including) 2.0.0 up to (including) 2.9.10
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
Added CVSS V2

								
							
							
						
NIST (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-20
Changed Reference Type
https://github.com/FasterXML/jackson-databind/issues/2478 No Types Assigned
https://github.com/FasterXML/jackson-databind/issues/2478 Patch, Third Party Advisory
Changed Reference Type
https://issues.apache.org/jira/browse/GEODE-7255 No Types Assigned
https://issues.apache.org/jira/browse/GEODE-7255 Third Party Advisory
Changed Reference Type
https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html No Types Assigned
https://lists.debian.org/debian-lts-announce/2019/10/msg00001.html Mailing List, Third Party Advisory
Changed Reference Type
https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062 No Types Assigned
https://medium.com/@cowtowncoder/on-jackson-cves-dont-panic-here-is-what-you-need-to-know-54cd0d6e8062 Exploit, Third Party Advisory
Changed Reference Type
https://seclists.org/bugtraq/2019/Oct/6 No Types Assigned
https://seclists.org/bugtraq/2019/Oct/6 Mailing List, Third Party Advisory
Changed Reference Type
https://www.debian.org/security/2019/dsa-4542 No Types Assigned
https://www.debian.org/security/2019/dsa-4542 Mailing List, Third Party Advisory

CVE Modified by MITRE 10/20/2020 6:15:32 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
https://www.oracle.com/security-alerts/cpuoct2020.html [No Types Assigned]