From c65999a21ff149a40661b5ab177d61babbe10d52 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 30 Jan 2020 22:21:22 +0100
Subject: Add CVE-2019-18634/sudo

---
 data/CVE/list | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/data/CVE/list b/data/CVE/list
index 6b7f1c0af0..e8e457599f 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -20808,7 +20808,9 @@ CVE-2019-18636 (A cross-site scripting (XSS) vulnerability in Jitbit .NET Forum
 CVE-2019-18635 (An issue was discovered in Mooltipass Moolticute through v0.42.1 and v ...)
 	NOT-FOR-US: Mooltipass Moolticute
 CVE-2019-18634 (In Sudo through 1.8.29, if pwfeedback is enabled in /etc/sudoers, user ...)
-	TODO: check
+	- sudo <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2020/01/30/6
+	NOTE: https://github.com/sudo-project/sudo/commit/fa8ffeb17523494f0e8bb49a25e53635f4509078
 CVE-2019-18633 (European Commission eIDAS-Node Integration Package before 2.3.1 has Mi ...)
 	NOT-FOR-US: European Commission eIDAS-Node Integration Package
 CVE-2019-18632 (European Commission eIDAS-Node Integration Package before 2.3.1 allows ...)
-- 
cgit v1.2.3