From cb1083dbaff9784c08ca51f5b80fb0178c2f37dc Mon Sep 17 00:00:00 2001
From: Shengjing Zhu <zhsj@debian.org>
Date: Thu, 6 Jan 2022 02:18:05 +0800
Subject: Track fixed version via unstable for CVE-2021-43816/containerd

---
 data/CVE/2021.list | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/data/CVE/2021.list b/data/CVE/2021.list
index d78cab6c43..1bbc72ee75 100644
--- a/data/CVE/2021.list
+++ b/data/CVE/2021.list
@@ -5915,6 +5915,10 @@ CVE-2021-43817 (Collabora Online is a collaborative online office suite based on
 	NOT-FOR-US: Collabora Online
 CVE-2021-43816
 	RESERVED
+	- containerd 1.5.9~ds1-1
+	[bullseye] - containerd <not-affected> (Vulnerable code introduced in 1.5.0)
+	NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-mvff-h3cj-wj9c
+	NOTE: Fixed by: https://github.com/containerd/containerd/commit/1407cab509ff0d96baa4f0eb6ff9980270e6e620
 CVE-2021-43815 (Grafana is an open-source platform for monitoring and observability. G ...)
 	- grafana <removed>
 CVE-2021-43814 (Rizin is a UNIX-like reverse engineering framework and command-line to ...)
-- 
cgit v1.2.3