From 6f120f4025949abb0e3a4867be88aca13ed96b52 Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Mon, 4 Jul 2022 11:10:15 +0200
Subject: new mediawiki issues

---
 data/CVE/list | 12 ++++++++++--
 1 file changed, 10 insertions(+), 2 deletions(-)

diff --git a/data/CVE/list b/data/CVE/list
index 0f53207d00..98a5f21fba 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -21,9 +21,17 @@ CVE-2022-34914
 CVE-2022-34913 (** DISPUTED ** md2roff 1.7 has a stack-based buffer overflow via a Mar ...)
 	TODO: check
 CVE-2022-34912 (An issue was discovered in MediaWiki before 1.37.3 and 1.38.x before 1 ...)
-	TODO: check
+	- mediawiki <unfixed>
+	[bullseye] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	[buster] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	NOTE: https://phabricator.wikimedia.org/T308473
+	NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/807225/
 CVE-2022-34911 (An issue was discovered in MediaWiki before 1.35.7, 1.36.x and 1.37.x  ...)
-	TODO: check
+	- mediawiki <unfixed>
+	[bullseye] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	[buster] - mediawiki <postponed> (Minor issue, fix along with next security release)
+	NOTE: https://phabricator.wikimedia.org/T308471
+	NOTE: https://gerrit.wikimedia.org/r/c/mediawiki/core/+/805208
 CVE-2022-2290 (Cross-site Scripting (XSS) - Reflected in GitHub repository zadam/tril ...)
 	TODO: check
 CVE-2022-2289 (Use After Free in GitHub repository vim/vim prior to 9.0. ...)
-- 
cgit v1.2.3