From 06653c27de0799a46f5a627f8c2e2370db8071b5 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Tue, 25 Jan 2022 13:10:14 +0100
Subject: Add CVE-2022-2309{6,7,8}/connman

---
 data/CVE/2022.list | 12 +++++++++---
 1 file changed, 9 insertions(+), 3 deletions(-)

diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index bf4fe8642c..ed696ea9aa 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -2221,12 +2221,18 @@ CVE-2022-23100
 	RESERVED
 CVE-2022-23099
 	RESERVED
-CVE-2022-23098
+CVE-2022-23098 [TCP Receive Path Triggers 100 % CPU loop if DNS server does not Send Back Data]
 	RESERVED
-CVE-2022-23097
+	- connman <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/25/1
+CVE-2022-23097 [Possibly invalid memory reference in strnlen() call in forward_dns_reply()]
 	RESERVED
-CVE-2022-23096
+	- connman <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/25/1
+CVE-2022-23096 [TCP Receive Path does not Check for Presence of Sufficient Header Data]
 	RESERVED
+	- connman <unfixed>
+	NOTE: https://www.openwall.com/lists/oss-security/2022/01/25/1
 CVE-2022-23095 (Open Design Alliance Drawings SDK before 2022.12.1 mishandles the load ...)
 	NOT-FOR-US: Open Design Alliance Drawings SDK
 CVE-2022-23094 (Libreswan 4.2 through 4.5 allows remote attackers to cause a denial of ...)
-- 
cgit v1.2.3