From 3c137e51b5438a53be9a4987afdad429425fd368 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Fri, 23 Sep 2022 10:52:28 +0200
Subject: Add CVE-2020-36604/node-hoek

---
 data/CVE/list | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'data/CVE/list')

diff --git a/data/CVE/list b/data/CVE/list
index bd6d3948c5..d0ceb7e2ad 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -25,7 +25,9 @@ CVE-2022-3278
 CVE-2022-3277
 	RESERVED
 CVE-2020-36604 (hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in t ...)
-	TODO: check
+	- node-hoek 9.0.3+~5.0.0+~4.0.0-1
+	NOTE: https://github.com/hapijs/hoek/issues/352
+	NOTE: Fixed by: https://github.com/hapijs/hoek/commit/948baf98634a5c206875b67d11368f133034fa90 (v9.0.3)
 CVE-2022-3276
 	RESERVED
 CVE-2022-3275
-- 
cgit v1.2.3