From 7740f429d59b0339c755ec3c1aad8d3a549a6b75 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 14 Feb 2022 20:09:50 +0100
Subject: Update upstream information on CVE-2022-23630

---
 data/CVE/2022.list | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index 0f9560f9c0..34b8e26502 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -3980,9 +3980,9 @@ CVE-2022-23632
 CVE-2022-23631 (superjson is a program to allow JavaScript expressions to be serialize ...)
 	TODO: check
 CVE-2022-23630 (Gradle is a build tool with a focus on build automation and support fo ...)
-	- gradle <not-affected> (Vulnerable node not yet uploaded)
-	NOTE: https://docs.gradle.org/7.4/release-notes.html
-	NOTE: https://github.com/gradle/gradle/commit/88ab9b652933bc3b2e3161b31ad8b8f4f0516351 (7.4.0)
+	- gradle <not-affected> (Vulnerable node not yet uploaded; introduced in 6.2)
+	NOTE: https://github.com/gradle/gradle/security/advisories/GHSA-9pf5-88jw-3qgr
+	NOTE: https://github.com/gradle/gradle/commit/88ab9b652933bc3b2e3161b31ad8b8f4f0516351 (v7.4.0-RC2)
 CVE-2022-23629
 	RESERVED
 CVE-2022-23628 (OPA is an open source, general-purpose policy engine. Under certain co ...)
-- 
cgit v1.2.3