From 4e9d435c957c97e9f0c9a82fbd6037027c2bc1d6 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 12 Oct 2021 21:07:34 +0200
Subject: Add CVE-2021-229{59,60}/nodejs

---
 data/CVE/list.2021 | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

(limited to 'data')

diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index a0cee53731..cc8231c8b8 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -45485,10 +45485,14 @@ CVE-2021-22962
 	RESERVED
 CVE-2021-22961
 	RESERVED
-CVE-2021-22960
+CVE-2021-22960 [HTTP Request Smuggling when parsing the body]
 	RESERVED
-CVE-2021-22959
+	- nodejs <unfixed>
+	NOTE: https://nodejs.org/en/blog/vulnerability/oct-2021-security-releases/#http-request-smuggling-when-parsing-the-body-medium-cve-2021-22960
+CVE-2021-22959 [HTTP Request Smuggling due to spaced in headers]
 	RESERVED
+	- nodejs <unfixed>
+	NOTE: https://nodejs.org/en/blog/vulnerability/oct-2021-security-releases/#http-request-smuggling-due-to-spaced-in-headers-medium-cve-2021-22959
 CVE-2021-22958 (A Server-Side Request Forgery vulnerability was found in concrete5 &lt ...)
 	NOT-FOR-US: Concrete CMS
 CVE-2021-22957
-- 
cgit v1.2.3