From 47a3005c60c12538f74d96a56d21685e0ce337e2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?David=20Pr=C3=A9vot?= <david@tilapin.org>
Date: Mon, 15 Nov 2021 14:15:03 -0400
Subject: Document CVE-2021-43608/php-doctrine-dbal in experimental only

---
 data/CVE/2021.list | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 82df769e8e..1c6aa64945 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -282,8 +282,11 @@ CVE-2021-43610 (Belledonne Belle-sip before 5.0.20 can crash applications such a
 	NOT-FOR-US: Belledonne Belle-sip
 CVE-2021-43609
 	RESERVED
-CVE-2021-43608
+CVE-2021-43608 [SQL Injection Security Vulnerability]
 	RESERVED
+	- php-doctrine-dbal <not-affected>
+	NOTE: Bug was introduced in 3.0, and fixed in experimental in 3.1.4+dfsg-1
+	NOTE: https://github.com/doctrine/dbal/security/advisories/GHSA-r7cj-8hjg-x622
 CVE-2021-43607
 	RESERVED
 CVE-2021-43606
-- 
cgit v1.2.3