Add CVE-2022-2301/chafa

author: Salvatore Bonaccorso <carnil@debian.org> 2022-07-04 22:23:49 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-07-04 22:23:49 +0200
commit: 7f8c0514e650674d70637e7c9a4da016a0eeac8f (patch)
tree: 346084066d8a1b5da46d38af622dc2b8c79985f2
parent: a2145f3e5e61cd725053ab28c28918c7aebcf51b (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 3f43169e51..c87f38a7c4 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13,7 +13,10 @@ CVE-2022-2303
 CVE-2022-2302
 	RESERVED
 CVE-2022-2301 (Buffer Over-read in GitHub repository hpjansson/chafa prior to 1.10.3. ...)
-	TODO: check
+	- chafa 1.10.3-1
+	NOTE: https://huntr.dev/bounties/f6b9114b-671d-4948-b946-ffe5c9aeb816/
+	NOTE: https://github.com/hpjansson/chafa/commit/56fabfa18a6880b4cb66047fa6557920078048d9 (1.12.0)
+	NOTE: https://github.com/hpjansson/chafa/commit/a52325294cc018d4fa9a7f29668faea24362b94c (1.10.3)
 CVE-2022-2300 (Cross-site Scripting (XSS) - Stored in GitHub repository microweber/mi ...)
 	TODO: check
 CVE-2022-2299
author	Salvatore Bonaccorso <carnil@debian.org>	2022-07-04 22:23:49 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-07-04 22:23:49 +0200
commit	7f8c0514e650674d70637e7c9a4da016a0eeac8f (patch)
tree	346084066d8a1b5da46d38af622dc2b8c79985f2
parent	a2145f3e5e61cd725053ab28c28918c7aebcf51b (diff)