From 9ec03f63b22532e8ee8b387e2b333234ca331afe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Roberto=20C=2E=20S=C3=A1nchez?= <roberto@debian.org>
Date: Tue, 4 Jan 2022 21:40:04 -0500
Subject: LTS: mark CVE-2020-22674/gpac as <not-affected> for buster

---
 data/CVE/2020.list | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index b74e2f07d6..caf0009780 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -19960,7 +19960,7 @@ CVE-2020-22675 (An issue was discovered in gpac 0.8.0. The GetGhostNum function
 	NOTE: https://github.com/gpac/gpac/commit/5aa8c4bbd970a3a77517b00528a596063efca1a9
 CVE-2020-22674 (An issue was discovered in gpac 0.8.0. An invalid memory dereference e ...)
 	- gpac 1.0.1+dfsg1-2
-	[buster] - gpac <ignored> (Minor issue)
+	[buster] - gpac <not-affected> (Vulnerable code introduced later, in version 0.7.0)
 	[stretch] - gpac <not-affected> (Vulnerable code introduced later, in version 0.7.0)
 	NOTE: https://github.com/gpac/gpac/issues/1346
 	NOTE: https://github.com/gpac/gpac/commit/6040a5981a9f51410bd18af8820afbd2748c2d76
-- 
cgit v1.2.3