Add CVE-2022-0235/node-fetch

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-16 21:15:49 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-16 21:15:49 +0100
commit: 117c8fe0cb00241aafdadff7e7c9f315af99511d (patch)
tree: 947fbf98d826904bbd394b5b195e9efbdd943fb7 /data/CVE/list.2022
parent: 5ed4613c15dbe5043343be6d544709772c0048ba (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index d6ea9b0afa..0647c44134 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -181,7 +181,9 @@ CVE-2022-0237
 CVE-2022-0236
 	RESERVED
 CVE-2022-0235 (node-fetch is vulnerable to Exposure of Sensitive Information to an Un ...)
-	TODO: check
+	- node-fetch <unfixed>
+	NOTE: https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/
+	TODO: check fixing commit
 CVE-2022-0234
 	RESERVED
 CVE-2022-0233
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-16 21:15:49 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-16 21:15:49 +0100
commit	117c8fe0cb00241aafdadff7e7c9f315af99511d (patch)
tree	947fbf98d826904bbd394b5b195e9efbdd943fb7 /data/CVE/list.2022
parent	5ed4613c15dbe5043343be6d544709772c0048ba (diff)