From 59cee2ce2f23972781ca4ab03eab2c48476870a0 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 21 Feb 2022 09:28:49 +0100
Subject: Add CVE-2022-23645/swtpm

---
 data/CVE/2022.list | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index 6fe23ae2ba..c09598d630 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -5227,7 +5227,9 @@ CVE-2022-23647 (Prism is a syntax highlighting library. Starting with version 1.
 CVE-2022-23646 (Next.js is a React framework. Starting with version 10.0.0 and prior t ...)
 	TODO: check
 CVE-2022-23645 (swtpm is a libtpms-based TPM emulator with socket, character device, a ...)
-	TODO: check
+	- swtpm <unfixed>
+	NOTE: https://github.com/stefanberger/swtpm/security/advisories/GHSA-2qgm-8xf4-3hqw
+	NOTE: https://github.com/stefanberger/swtpm/commit/9f740868fc36761de27df3935513bdebf8852d19
 CVE-2022-23644 (BookWyrm is a decentralized social network for tracking reading habits ...)
 	NOT-FOR-US: BookWyrm
 CVE-2022-23643 (Sourcegraph is a code search and navigation engine. Sourcegraph versio ...)
-- 
cgit v1.2.3