From 402cbff25fc59218db09074bc8a93b4c2820fd50 Mon Sep 17 00:00:00 2001
From: Sylvain Beucler <beuc@beuc.net>
Date: Wed, 24 Nov 2021 17:56:49 +0100
Subject: CVE-2019-8921,CVE-2019-8922/bluez: track 2 missing CVEs

---
 data/CVE/2019.list | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index 272376315c..423fc9ffcf 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -33282,8 +33282,14 @@ CVE-2019-8923 (XAMPP through 5.6.8 and previous allows SQL injection via the cds
 	NOT-FOR-US: XAMPP
 CVE-2019-8922
 	RESERVED
+	- bluez 5.54-1
+	NOTE: https://ssd-disclosure.com/ssd-advisory-linux-bluez-information-leak-and-heap-overflow/
+	NOTE: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=6c7243fb6ab90b7b855cead98c66394fedea135f (5.51)
 CVE-2019-8921
 	RESERVED
+	- bluez 5.54-1
+	NOTE: https://ssd-disclosure.com/ssd-advisory-linux-bluez-information-leak-and-heap-overflow/
+	NOTE: https://git.kernel.org/pub/scm/bluetooth/bluez.git/commit/?id=7bf67b32709d828fafa26256b4c78331760c6e93 (5.51)
 CVE-2019-8920 (iart.php in XAMPP 1.7.0 has XSS, a related issue to CVE-2008-3569. ...)
 	NOT-FOR-US: XAMPP
 CVE-2019-8919 (The seadroid (aka Seafile Android Client) application through 2.2.13 f ...)
-- 
cgit v1.2.3