From 71c612fa02e28fa5d52416d50dbe31b5008d3465 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 3 Jul 2022 21:38:07 +0200
Subject: Track fixed version for CVE-2022-2084/cloud-init via unstable

---
 data/CVE/list | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/CVE/list b/data/CVE/list
index 6ee3f393c4..9293f2a11f 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4125,7 +4125,7 @@ CVE-2022-2085 (A NULL pointer dereference vulnerability was found in Ghostscript
 	NOTE: Fixed by: https://git.ghostscript.com/?p=ghostpdl.git;h=ae1061d948d88667bdf51d47d918c4684d0f67df (ghostpdl-9.56.0rc1)
 CVE-2022-2084 [logged schema failures can include password hashes]
 	RESERVED
-	- cloud-init <unfixed> (bug #1014247)
+	- cloud-init 22.2-2 (bug #1014247)
 	[bullseye] - cloud-init <not-affected> (Vulnerable code not present, introduced in 22.2)
 	[buster] - cloud-init <not-affected> (Vulnerable code not present, introduced in 22.2)
 	NOTE: https://github.com/canonical/cloud-init/commit/4d467b14363d800b2185b89790d57871f11ea88c
-- 
cgit v1.2.3