CVE-2022-25271/drupal7 assigned for SA-CORE-2022-033

author: Salvatore Bonaccorso <carnil@debian.org> 2022-02-17 09:18:54 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-02-17 09:18:54 +0100
commit: 28719c0bb2354ad720cfeba4ccf06b9f7dda40c2 (patch)
tree: cd516944a4e63516a61a50b43cf515acfb2fd8f6
parent: 4eca59a5db6d43eef1921b8bfac4a280ee9d17b3 (diff)
2 files changed, 2 insertions, 4 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index e35968fd67..d0401a9f6f 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -54,8 +54,6 @@ CVE-2022-25273
 	RESERVED
 CVE-2022-25272
 	RESERVED
-CVE-2022-25271 (Drupal core's form API has a vulnerability where certain contributed o ...)
-	TODO: check
 CVE-2022-25270 (The Quick Edit module does not properly check entity access in some ci ...)
 	TODO: check
 CVE-2022-25269
@@ -184,9 +182,8 @@ CVE-2022-0625
 	RESERVED
 CVE-2022-0624
 	RESERVED
-CVE-2022-XXXX [Improper input validation - SA-CORE-2022-003]
+CVE-2022-25271 [Improper input validation - SA-CORE-2022-003]
 	- drupal7 <removed>
-	[stretch] - drupal7 7.52-2+deb9u18
 	NOTE: https://www.drupal.org/sa-core-2022-003
 	NOTE: https://git.drupalcode.org/project/drupal/-/commit/43c757167380643b5f73287a63a8739731a5b712
 CVE-2022-25245
diff --git a/data/DLA/list b/data/DLA/list
index d18811e9a5..d4fd6d3ee5 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,4 +1,5 @@
 [16 Feb 2022] DLA-2925-1 drupal7 - security update
+	{CVE-2022-25271}
 	[stretch] - drupal7 7.52-2+deb9u18
 [15 Feb 2022] DLA-2924-1 libxstream-java - security update
 	{CVE-2021-43859}
author	Salvatore Bonaccorso <carnil@debian.org>	2022-02-17 09:18:54 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-02-17 09:18:54 +0100
commit	28719c0bb2354ad720cfeba4ccf06b9f7dda40c2 (patch)
tree	cd516944a4e63516a61a50b43cf515acfb2fd8f6
parent	4eca59a5db6d43eef1921b8bfac4a280ee9d17b3 (diff)