Add CVE-2022-23990/expat

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-26 22:10:42 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-26 22:10:42 +0100
commit: 6329af7a20d370b7fd1ac6f8fc05718a56ab2666 (patch)
tree: 22b60b8bd6c71b879c8af2d97abb6c8b2af45986
parent: 7df354499f9bf3d9f72aa3a75edb59e7c20155c3 (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 4134b26b82..b4192e38a7 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -27,7 +27,8 @@ CVE-2022-23992
 CVE-2022-23991
 	RESERVED
 CVE-2022-23990 (Expat (aka libexpat) before 2.4.4 has an integer overflow in the doPro ...)
-	TODO: check
+	- expat <unfixed>
+	NOTE: https://github.com/libexpat/libexpat/pull/551
 CVE-2022-23989
 	RESERVED
 CVE-2022-23988
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-26 22:10:42 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-26 22:10:42 +0100
commit	6329af7a20d370b7fd1ac6f8fc05718a56ab2666 (patch)
tree	22b60b8bd6c71b879c8af2d97abb6c8b2af45986
parent	7df354499f9bf3d9f72aa3a75edb59e7c20155c3 (diff)