From 0bcf0eeea6b8da21a8df124a24fa7ae842eb89a7 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 1 Dec 2021 21:39:10 +0100
Subject: Add CVE-2021-4019/vim

---
 data/CVE/2021.list | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index 7e59f1c280..8930989882 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -639,7 +639,9 @@ CVE-2021-4020 (janus-gateway is vulnerable to Improper Neutralization of Input D
 	NOTE: https://github.com/meetecho/janus-gateway/commit/ba166e9adebfe5343f826c6a9e02299d35414ffd
 	NOTE: Issues only in janus-demos built from src:janus
 CVE-2021-4019 (vim is vulnerable to Heap-based Buffer Overflow ...)
-	TODO: check
+	- vim <unfixed>
+	NOTE: https://huntr.dev/bounties/d8798584-a6c9-4619-b18f-001b9a6fca92
+	NOTE: https://github.com/vim/vim/commit/bd228fd097b41a798f90944b5d1245eddd484142 (v8.2.3669)
 CVE-2021-44220
 	RESERVED
 CVE-2021-44219 (Gin-Vue-Admin before 2.4.6 mishandles a SQL database. ...)
-- 
cgit v1.2.3