From 3cc49e160286892fb2cd6a976d2f974f8807a070 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 22 Mar 2022 08:44:48 +0100
Subject: Track fixed version for CVE-2021-32610/php-pear

---
 data/CVE/list | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'data')

diff --git a/data/CVE/list b/data/CVE/list
index 4a2522861d..09a9bb909e 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -54711,7 +54711,7 @@ CVE-2021-32611 (A NULL pointer dereference vulnerability exists in eXcall_api.c
 CVE-2021-32610 (In Archive_Tar before 1.4.14, symlinks can refer to targets outside of ...)
 	{DLA-2721-1}
 	- drupal7 <removed>
-	- php-pear <unfixed> (bug #991541)
+	- php-pear 1:1.10.13+submodules+notgz-1 (bug #991541)
 	[bullseye] - php-pear <no-dsa> (Minor issue)
 	[buster] - php-pear <no-dsa> (Minor issue)
 	[stretch] - php-pear <no-dsa> (Minor issue)
-- 
cgit v1.2.3