From 900116bebfca7cd15183a046ad8691fb6c6abf50 Mon Sep 17 00:00:00 2001
From: Sylvain Beucler <beuc@beuc.net>
Date: Mon, 18 Jan 2021 15:37:06 +0100
Subject: CVE-2020-35176/awstats: reference sanctioned patch

---
 data/CVE/list | 1 +
 1 file changed, 1 insertion(+)

diff --git a/data/CVE/list b/data/CVE/list
index c216b890e8..d38c3b4f8c 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -13184,6 +13184,7 @@ CVE-2020-35176 (In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a par
 	{DLA-2506-1}
 	- awstats <unfixed> (bug #977190)
 	NOTE: https://github.com/eldy/awstats/issues/195
+	NOTE: https://github.com/eldy/AWStats/commit/96756d7f40e002cc1e6ba72c633fb66b92e54f49
 CVE-2020-35175 (Frappe Framework 12 and 13 does not properly validate the HTTP method  ...)
 	NOT-FOR-US: Frappe Framework
 CVE-2020-35174
-- 
cgit v1.2.3