Add CVE-2021-22060 to libspring-java as follow-up to CVE-2021-22096

author: Neil Williams <codehelp@debian.org> 2022-01-25 11:09:41 +0000
committer: Neil Williams <codehelp@debian.org> 2022-01-25 11:09:41 +0000
commit: 870c83be86eca5ee7f869ee0e3c48890ea1fd682 (patch)
tree: 284a271000bda6bf6e39993c2547290bbc3b0f86
parent: 663b5944af2a3ce6e90f6dd774b299696439e80a (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index 6260236a77..494f4bf4ad 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -59648,7 +59648,9 @@ CVE-2021-22062
 CVE-2021-22061
 	RESERVED
 CVE-2021-22060 (In Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older ...)
-	TODO: check
+	- libspring-java <unfixed>
+	NOTE: follow-up to CVE-2021-22096
+	NOTE: https://tanzu.vmware.com/security/cve-2021-22060
 CVE-2021-22059
 	RESERVED
 CVE-2021-22058
author	Neil Williams <codehelp@debian.org>	2022-01-25 11:09:41 +0000
committer	Neil Williams <codehelp@debian.org>	2022-01-25 11:09:41 +0000
commit	870c83be86eca5ee7f869ee0e3c48890ea1fd682 (patch)
tree	284a271000bda6bf6e39993c2547290bbc3b0f86
parent	663b5944af2a3ce6e90f6dd774b299696439e80a (diff)