From 7f8c0514e650674d70637e7c9a4da016a0eeac8f Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 4 Jul 2022 22:23:49 +0200
Subject: Add CVE-2022-2301/chafa

---
 data/CVE/list | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/data/CVE/list b/data/CVE/list
index 3f43169e51..c87f38a7c4 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13,7 +13,10 @@ CVE-2022-2303
 CVE-2022-2302
 	RESERVED
 CVE-2022-2301 (Buffer Over-read in GitHub repository hpjansson/chafa prior to 1.10.3. ...)
-	TODO: check
+	- chafa 1.10.3-1
+	NOTE: https://huntr.dev/bounties/f6b9114b-671d-4948-b946-ffe5c9aeb816/
+	NOTE: https://github.com/hpjansson/chafa/commit/56fabfa18a6880b4cb66047fa6557920078048d9 (1.12.0)
+	NOTE: https://github.com/hpjansson/chafa/commit/a52325294cc018d4fa9a7f29668faea24362b94c (1.10.3)
 CVE-2022-2300 (Cross-site Scripting (XSS) - Stored in GitHub repository microweber/mi ...)
 	TODO: check
 CVE-2022-2299
-- 
cgit v1.2.3