Add CVE-2022-23852/expat

author: Salvatore Bonaccorso <carnil@debian.org> 2022-01-24 09:20:46 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-01-24 09:20:46 +0100
commit: 2e09d2219ed2b00022c9d6470b0d131d1eb8b324 (patch)
tree: 9e91f0dfc6d33ac3faa7e1d6b4ed2ff898fd64bd /data/CVE/2022.list
parent: a8af3481302f5c28f90f3f26bf44c9a45720f95f (diff)
1 files changed, 2 insertions, 1 deletions
diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index 00da111d53..040c5b402d 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -23,7 +23,8 @@ CVE-2022-23854
 CVE-2022-23853
 	RESERVED
 CVE-2022-23852 (Expat (aka libexpat) before 2.4.4 has a signed integer overflow in XML ...)
-	TODO: check
+	- expat <unfixed>
+	NOTE: https://github.com/libexpat/libexpat/pull/550
 CVE-2022-23851
 	RESERVED
 CVE-2022-0341
author	Salvatore Bonaccorso <carnil@debian.org>	2022-01-24 09:20:46 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-01-24 09:20:46 +0100
commit	2e09d2219ed2b00022c9d6470b0d131d1eb8b324 (patch)
tree	9e91f0dfc6d33ac3faa7e1d6b4ed2ff898fd64bd /data/CVE/2022.list
parent	a8af3481302f5c28f90f3f26bf44c9a45720f95f (diff)