enrich CVE-2024-5742 for GNU nano

Signed-off-by: Weston Steimel <[email protected]>
anchore · Sep 20, 2024 · dacc555 · dacc555
1 parent 32acc73
commit dacc555
Showing 1 changed file with 44 additions and 0 deletions.
diff --git a/data/anchore/2024/CVE-2024-5742.json b/data/anchore/2024/CVE-2024-5742.json
@@ -0,0 +1,44 @@
+{
+  "additionalMetadata": {
+    "cna": "redhat",
+    "cveId": "CVE-2024-5742",
+    "reason": "Added CPE configurations because not yet analyzed by NVD.",
+    "references": [
+      "https://access.redhat.com/security/cve/CVE-2024-5742",
+      "https://bugzilla.redhat.com/show_bug.cgi?id=2278574",
+      "https://lists.debian.org/debian-lts-announce/2024/06/msg00006.html"
+    ]
+  },
+  "adp": {
+    "affected": [
+      {
+        "cpes": [
+          "cpe:2.3:a:gnu:nano:*:*:*:*:*:*:*:*"
+        ],
+        "product": "nano",
+        "repo": "https://git.savannah.gnu.org/cgit/nano.git",
+        "vendor": "GNU",
+        "versions": [
+          {
+            "lessThan": "8.0",
+            "status": "affected",
+            "version": "2.1.99pre2",
+            "versionType": "semver"
+          }
+        ]
+      }
+    ],
+    "providerMetadata": {
+      "orgId": "00000000-0000-4000-8000-000000000000",
+      "shortName": "anchoreadp"
+    },
+    "references": [
+      {
+        "url": "https://git.savannah.gnu.org/cgit/nano.git/commit/?id=5e7a3c2e7e118c7f12d5dfda9f9140f638976aa2"
+      },
+      {
+        "url": "https://git.savannah.gnu.org/cgit/nano.git/commit/?id=123110c5dc3e0d8c60a4ff0121056e301f503706"
+      }
+    ]
+  }
+}