Add CVE-2022-0235/node-fetch

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-16 21:15:49 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-16 21:15:49 +0100
commit: 5c55ee105d062f9b599f6f277e3f6a1a2d0b1cf9 (patch)
tree: 2fbdb4bcb7284fca1d7de2b5189e9f486e971b68
parent: d2160074a872276d69be1bf95918a496207ae07c (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index cbdcc6b072..9d8f1aa745 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -181,7 +181,9 @@ CVE-2022-0237
 CVE-2022-0236
 	RESERVED
 CVE-2022-0235 (node-fetch is vulnerable to Exposure of Sensitive Information to an Un ...)
-	TODO: check
+	- node-fetch <unfixed>
+	NOTE: https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/
+	TODO: check fixing commit
 CVE-2022-0234
 	RESERVED
 CVE-2022-0233
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-16 21:15:49 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-16 21:15:49 +0100
commit	5c55ee105d062f9b599f6f277e3f6a1a2d0b1cf9 (patch)
tree	2fbdb4bcb7284fca1d7de2b5189e9f486e971b68
parent	d2160074a872276d69be1bf95918a496207ae07c (diff)