From 6329af7a20d370b7fd1ac6f8fc05718a56ab2666 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 26 Jan 2022 22:10:42 +0100
Subject: Add CVE-2022-23990/expat

---
 data/CVE/list.2022 | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index 4134b26b82..b4192e38a7 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -27,7 +27,8 @@ CVE-2022-23992
 CVE-2022-23991
 	RESERVED
 CVE-2022-23990 (Expat (aka libexpat) before 2.4.4 has an integer overflow in the doPro ...)
-	TODO: check
+	- expat <unfixed>
+	NOTE: https://github.com/libexpat/libexpat/pull/551
 CVE-2022-23989
 	RESERVED
 CVE-2022-23988
-- 
cgit v1.2.3