Add information about CVE-2022-22594 (webkit2gtk / wpewebkit)

https://lists.webkit.org/pipermail/webkit-gtk/2022-January/003778.html

2 files changed, 8 insertions, 4 deletions

diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 3862849de0..be8cc071c2 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -4518,8 +4518,12 @@ CVE-2022-22596
 	RESERVED
 CVE-2022-22595
 	RESERVED
-CVE-2022-22594
-	RESERVED
+CVE-2022-22594 (A cross-origin issue in the IndexDB API was addressed with improved input validation.)
+	{DSA-5061-1 DSA-5060-1}
+	- webkit2gtk 2.34.4-1
+	[stretch] - webkit2gtk <ignored> (Not covered by security support in stretch)
+	- wpewebkit 2.34.4-1
+	NOTE: https://webkitgtk.org/security/WSA-2022-0001.html
 CVE-2022-22593
 	RESERVED
 CVE-2022-22592
diff --git a/data/DSA/list b/data/DSA/list
index 7c4459cd2c..ca1e946b1e 100644
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -17,10 +17,10 @@
 	[buster] - nss 2:3.42.1-1+deb10u5
 	[bullseye] - nss 2:3.61-1+deb11u2
 [25 Jan 2022] DSA-5061-1 wpewebkit - security update
-	{CVE-2021-30934 CVE-2021-30936 CVE-2021-30951 CVE-2021-30952 CVE-2021-30953 CVE-2021-30954 CVE-2021-30984}
+	{CVE-2022-22594 CVE-2021-30934 CVE-2021-30936 CVE-2021-30951 CVE-2021-30952 CVE-2021-30953 CVE-2021-30954 CVE-2021-30984}
 	[bullseye] - wpewebkit 2.34.4-1~deb11u1
 [25 Jan 2022] DSA-5060-1 webkit2gtk - security update
-	{CVE-2021-30934 CVE-2021-30936 CVE-2021-30951 CVE-2021-30952 CVE-2021-30953 CVE-2021-30954 CVE-2021-30984}
+	{CVE-2022-22594 CVE-2021-30934 CVE-2021-30936 CVE-2021-30951 CVE-2021-30952 CVE-2021-30953 CVE-2021-30954 CVE-2021-30984}
 	[buster] - webkit2gtk 2.34.4-1~deb10u1
 	[bullseye] - webkit2gtk 2.34.4-1~deb11u1
 [25 Jan 2022] DSA-5059-1 policykit-1 - security update