Publish Advisories

GHSA-2268-98wh-qfhf GHSA-2268-98wh-qfhf
2023-12-29 20:09:43 +00:00 · 2023-12-29 20:09:43 +00:00 · 7542da03bd
--- a/advisories/github-reviewed/2023/12/GHSA-2268-98wh-qfhf/GHSA-2268-98wh-qfhf.json
+++ b/advisories/github-reviewed/2023/12/GHSA-2268-98wh-qfhf/GHSA-2268-98wh-qfhf.json
@ -0,0 +1,62 @@
+{
+  "schema_version": "1.4.0",
+  "id": "GHSA-2268-98wh-qfhf",
+  "modified": "2023-12-29T20:08:20Z",
+  "published": "2023-12-29T15:30:37Z",
+  "aliases": [
+    "CVE-2023-50572"
+  ],
+  "summary": "JLine vulnerable to out of memory error",
+  "details": "An issue in the component `GroovyEngine.execute` of JLine v3.24.1 allows attackers to cause an out of memory (OOM) error exception.",
+  "severity": [
+
+  ],
+  "affected": [
+    {
+      "package": {
+        "ecosystem": "Maven",
+        "name": "org.jline:jline-parent"
+      },
+      "ranges": [
+        {
+          "type": "ECOSYSTEM",
+          "events": [
+            {
+              "introduced": "0"
+            },
+            {
+              "fixed": "3.25.0"
+            }
+          ]
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "type": "ADVISORY",
+      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50572"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/jline/jline3/issues/909"
+    },
+    {
+      "type": "WEB",
+      "url": "https://github.com/jline/jline3/commit/f3c60a3e6255e8e0c20d5043a4fe248446f292bb"
+    },
+    {
+      "type": "PACKAGE",
+      "url": "https://github.com/jline/jline3"
+    }
+  ],
+  "database_specific": {
+    "cwe_ids": [
+      "CWE-122"
+    ],
+    "severity": "MODERATE",
+    "github_reviewed": true,
+    "github_reviewed_at": "2023-12-29T20:08:20Z",
+    "nvd_published_at": "2023-12-29T15:15:10Z"
+  }
+}
--- a/advisories/unreviewed/2023/12/GHSA-2268-98wh-qfhf/GHSA-2268-98wh-qfhf.json
+++ b/advisories/unreviewed/2023/12/GHSA-2268-98wh-qfhf/GHSA-2268-98wh-qfhf.json
@ -1,35 +0,0 @@
-{
-  "schema_version": "1.4.0",
-  "id": "GHSA-2268-98wh-qfhf",
-  "modified": "2023-12-29T15:30:37Z",
-  "published": "2023-12-29T15:30:37Z",
-  "aliases": [
-    "CVE-2023-50572"
-  ],
-  "details": "An issue in the component GroovyEngine.execute of jline-groovy v3.24.1 allows attackers to cause an OOM (OutofMemory) error.",
-  "severity": [
-
-  ],
-  "affected": [
-
-  ],
-  "references": [
-    {
-      "type": "ADVISORY",
-      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-50572"
-    },
-    {
-      "type": "WEB",
-      "url": "https://github.com/jline/jline3/issues/909"
-    }
-  ],
-  "database_specific": {
-    "cwe_ids": [
-
-    ],
-    "severity": null,
-    "github_reviewed": false,
-    "github_reviewed_at": null,
-    "nvd_published_at": "2023-12-29T15:15:10Z"
-  }
-}