Track fixed version for CVE-2022-0686/node-url-parse via unstable

author: Salvatore Bonaccorso <carnil@debian.org> 2022-02-21 21:02:24 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-02-21 21:02:24 +0100
commit: 97a03ca75233bff7e39eb228c969d733aec11cad (patch)
tree: f763540dfe3fef30514d73c41c8ff879527418fe
parent: acc8911e42a877c5b72892f3b0bca15da6dce064 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 0570c2b0e5..41d446fa17 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -487,7 +487,7 @@ CVE-2022-0688 (Business Logic Errors in Packagist microweber/microweber prior to
 CVE-2022-0687
 	RESERVED
 CVE-2022-0686 (Authorization Bypass Through User-Controlled Key in NPM url-parse prio ...)
-	- node-url-parse <unfixed>
+	- node-url-parse 1.5.9+~1.4.8-1
 	NOTE: https://huntr.dev/bounties/55fd06cd-9054-4d80-83be-eb5a454be78c
 	NOTE: https://github.com/unshiftio/url-parse/commit/d5c64791ef496ca5459ae7f2176a31ea53b127e5 (1.5.8)
 CVE-2022-0685 (Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior  ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-02-21 21:02:24 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-02-21 21:02:24 +0100
commit	97a03ca75233bff7e39eb228c969d733aec11cad (patch)
tree	f763540dfe3fef30514d73c41c8ff879527418fe
parent	acc8911e42a877c5b72892f3b0bca15da6dce064 (diff)