Reference upstream commit for CVE-2022-0235/node-fetch

author: Aron Xu <aron@debian.org> 2022-01-19 16:54:23 +0800
committer: Aron Xu <happyaron.xu@gmail.com> 2022-01-19 16:55:09 +0800
commit: 6ed5d275cd0c3a3e087f03e690a774adefc35f7a (patch)
tree: 303c0996f3230404438c3f4999912a933e13b6d1 /data
parent: eddcaecc293cd8b6e53c9d7e27f7fa0b18027be7 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 570adbc336..f443fa0bdb 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -524,7 +524,7 @@ CVE-2022-0236 (The WP Import Export WordPress plugin (both free and premium vers
 CVE-2022-0235 (node-fetch is vulnerable to Exposure of Sensitive Information to an Un ...)
 	- node-fetch <unfixed>
 	NOTE: https://huntr.dev/bounties/d26ab655-38d6-48b3-be15-f9ad6b6ae6f7/
-	TODO: check fixing commit
+	NOTE: Fixed by: https://github.com/node-fetch/node-fetch/commit/f5d3cf5e2579cb8f4c76c291871e69696aef8f80 (v3.1.1)
 CVE-2022-0234
 	RESERVED
 CVE-2022-0233 (The ProfileGrid &#8211; User Profiles, Memberships, Groups and Communi ...)
author	Aron Xu <aron@debian.org>	2022-01-19 16:54:23 +0800
committer	Aron Xu <happyaron.xu@gmail.com>	2022-01-19 16:55:09 +0800
commit	6ed5d275cd0c3a3e087f03e690a774adefc35f7a (patch)
tree	303c0996f3230404438c3f4999912a933e13b6d1 /data
parent	eddcaecc293cd8b6e53c9d7e27f7fa0b18027be7 (diff)