Add CVE-2022-23990/expat

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-26 22:10:42 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-26 22:10:42 +0100
commit: a9f13e961100d7c3e51cff6e799ae3b191695c3a (patch)
tree: a7b16140ce50bb9739bd7324950fc323a10befcb
parent: 1cb0a96015906819485e591c3544f86c01cb2afc (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index 4134b26b82..b4192e38a7 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -27,7 +27,8 @@ CVE-2022-23992
 CVE-2022-23991
 	RESERVED
 CVE-2022-23990 (Expat (aka libexpat) before 2.4.4 has an integer overflow in the doPro ...)
-	TODO: check
+	- expat <unfixed>
+	NOTE: https://github.com/libexpat/libexpat/pull/551
 CVE-2022-23989
 	RESERVED
 CVE-2022-23988
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-26 22:10:42 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-26 22:10:42 +0100
commit	a9f13e961100d7c3e51cff6e799ae3b191695c3a (patch)
tree	a7b16140ce50bb9739bd7324950fc323a10befcb
parent	1cb0a96015906819485e591c3544f86c01cb2afc (diff)