From b521d43a9d1b65cbeae13230f357330f857967d4 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 12 Nov 2022 09:07:34 +0100
Subject: Remove note from CVE-2021-20223

Further investigation from the assigning CNA showed that this is not a
security issue. Thus the CNA has withdrawn the CVE. Cleanup as well the
cross-reference for DLA 3107-1.
---
 data/CVE/list | 5 -----
 data/DLA/list | 2 +-
 2 files changed, 1 insertion(+), 6 deletions(-)

(limited to 'data')

diff --git a/data/CVE/list b/data/CVE/list
index d6ab08734f..f72075fe29 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -140448,11 +140448,6 @@ CVE-2021-20224 (An integer overflow issue was discovered in ImageMagick's Export
 	NOTE: https://github.com/ImageMagick/ImageMagick6/commit/553054c1cb1e4e05ec86237afef76a32cd7c464d
 CVE-2021-20223
 	REJECTED
-	{DLA-3107-1}
-	- sqlite3 3.34.0-1
-	NOTE: https://github.com/sqlite/sqlite/commit/d1d43efa4fb0f2098c0e2c5bf2e807c58d5ec05b (version-3.34.0)
-	NOTE: https://sqlite.org/src/info/b7b7bde9b7a03665
-	NOTE: https://www.sqlite.org/forum/forumpost/09609d7e22
 CVE-2021-20222 (A flaw was found in keycloak. The new account console in keycloak can  ...)
 	NOT-FOR-US: Keycloak
 CVE-2021-20221 (An out-of-bounds heap buffer access issue was found in the ARM Generic ...)
diff --git a/data/DLA/list b/data/DLA/list
index f96d9b5880..98dd6f5e38 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -231,7 +231,7 @@
 	{CVE-2022-1049}
 	[buster] - pcs 0.10.1-2+deb10u1
 [13 Sep 2022] DLA-3107-1 sqlite3 - security update
-	{CVE-2020-35525 CVE-2020-35527 CVE-2021-20223}
+	{CVE-2020-35525 CVE-2020-35527}
 	[buster] - sqlite3 3.27.2-3+deb10u2
 [13 Sep 2022] DLA-3106-1 python-oslo.utils - security update
 	{CVE-2022-0718}
-- 
cgit v1.2.3