From 38d17cc7674f74d38dde0f65e664f03313bb20c9 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 19 Jan 2022 20:42:05 +0100
Subject: Track fixed version for CVE-2022-0235/node-fetch via unstable

---
 data/CVE/list | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'data/CVE/list')

diff --git a/data/CVE/list b/data/CVE/list
index 718f083adc..836715995d 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -715,7 +715,7 @@ CVE-2022-0237
 CVE-2022-0236 (The WP Import Export WordPress plugin (both free and premium versions) ...)
 	NOT-FOR-US: WordPress plugin
 CVE-2022-0235 (node-fetch is vulnerable to Exposure of Sensitive Information to an Un ...)
-	- node-fetch <unfixed>
+	- node-fetch 2.6.1-7
 	NOTE: https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/
 	NOTE: Fixed by: https://github.com/node-fetch/node-fetch/commit/f5d3cf5e2579cb8f4c76c291871e69696aef8f80 (v3.1.1)
 CVE-2022-0234
-- 
cgit v1.2.3