Add extra note for CVE-2019-20892

author: Salvatore Bonaccorso <carnil@debian.org> 2020-07-06 17:57:12 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2020-07-06 17:57:12 +0200
commit: bfd99bdd15be5d14fa370f4d5427ed8dd25ce685 (patch)
tree: 700ad279bd52ab06e11beee3758a63c810942279 /data
parent: ab98a41bad65b3d85d27f91a2ee213a079fc7e2d (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/data/CVE/list b/data/CVE/list
index 5961b2c1f5..ace83345d9 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1378,6 +1378,8 @@ CVE-2019-20892 (net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStat
 	NOTE: https://github.com/net-snmp/net-snmp/commit/39381c4d20dd8042870c28ae3b0c16291e50b705
 	NOTE: https://github.com/net-snmp/net-snmp/commit/5f881d3bf24599b90d67a45cae7a3eb099cd71c9
 	NOTE: https://github.com/net-snmp/net-snmp/commit/87bd90d04f20dd3f73e3e7e631a442ccd419b9d3
+	NOTE: Extra patches to address memory leaks:
+	NOTE: https://salsa.debian.org/debian/net-snmp/-/merge_requests/3
 CVE-2019-20891 (WooCommerce before 3.6.5, when it handles CSV imports of products, has ...)
 	NOT-FOR-US: WooCommerce
 CVE-2020-14929 (Alpine before 2.23 silently proceeds to use an insecure connection aft ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2020-07-06 17:57:12 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2020-07-06 17:57:12 +0200
commit	bfd99bdd15be5d14fa370f4d5427ed8dd25ce685 (patch)
tree	700ad279bd52ab06e11beee3758a63c810942279 /data
parent	ab98a41bad65b3d85d27f91a2ee213a079fc7e2d (diff)