Add CVE-2022-0570/mruby

author: Salvatore Bonaccorso <carnil@debian.org> 2022-02-13 20:10:15 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-02-13 20:10:15 +0100
commit: 7364197b25223b5433a738d62066aea4b4a1a777 (patch)
tree: 91d09f09aa42e1e79358050d312f96fe0e70d34b /data
parent: af7b3a0942d6c3ffe144200cd18542e9be012c1a (diff)
1 files changed, 3 insertions, 1 deletions
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index e81a477911..b33467f82b 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -19,7 +19,9 @@ CVE-2022-0572
 CVE-2022-0571
 	RESERVED
 CVE-2022-0570 (Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. ...)
-	TODO: check
+	- mruby <not-affected> (Vulnerable code introduced later)
+	NOTE: https://huntr.dev/bounties/65a7632e-f95b-4836-b1a7-9cb95e5124f1
+	NOTE: https://github.com/mruby/mruby/commit/38b164ace7d6ae1c367883a3d67d7f559783faad
 CVE-2022-0569 (Exposure of Sensitive Information to an Unauthorized Actor in Packagis ...)
 	TODO: check
 CVE-2022-24975 (The --mirror documentation for Git through 2.35.1 does not mention the ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-02-13 20:10:15 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-02-13 20:10:15 +0100
commit	7364197b25223b5433a738d62066aea4b4a1a777 (patch)
tree	91d09f09aa42e1e79358050d312f96fe0e70d34b /data
parent	af7b3a0942d6c3ffe144200cd18542e9be012c1a (diff)