From bfd99bdd15be5d14fa370f4d5427ed8dd25ce685 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 6 Jul 2020 17:57:12 +0200
Subject: Add extra note for CVE-2019-20892

---
 data/CVE/list | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'data')

diff --git a/data/CVE/list b/data/CVE/list
index 5961b2c1f5..ace83345d9 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1378,6 +1378,8 @@ CVE-2019-20892 (net-snmp before 5.8.1.pre1 has a double free in usm_free_usmStat
 	NOTE: https://github.com/net-snmp/net-snmp/commit/39381c4d20dd8042870c28ae3b0c16291e50b705
 	NOTE: https://github.com/net-snmp/net-snmp/commit/5f881d3bf24599b90d67a45cae7a3eb099cd71c9
 	NOTE: https://github.com/net-snmp/net-snmp/commit/87bd90d04f20dd3f73e3e7e631a442ccd419b9d3
+	NOTE: Extra patches to address memory leaks:
+	NOTE: https://salsa.debian.org/debian/net-snmp/-/merge_requests/3
 CVE-2019-20891 (WooCommerce before 3.6.5, when it handles CSV imports of products, has ...)
 	NOT-FOR-US: WooCommerce
 CVE-2020-14929 (Alpine before 2.23 silently proceeds to use an insecure connection aft ...)
-- 
cgit v1.2.3