From ccec75c4b8fc5bc3e6f3b3be8239f09b72a4bb06 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Wed, 23 Sep 2020 17:30:48 +0200
Subject: Update information on CVE-2020-10687/undertow

---
 data/CVE/2020.list | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index 44586a0557..842b92cf94 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -33450,8 +33450,11 @@ CVE-2020-10688
 	NOTE: https://issues.redhat.com/browse/RESTEASY-2519 (restricted)
 CVE-2020-10687
 	RESERVED
-	- undertow <undetermined>
+	- undertow 2.2.0-1
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1785049
+	NOTE: https://issues.jboss.org/browse/UNDERTOW-1780
+	NOTE: https://github.com/undertow-io/undertow/pull/951
+	NOTE: https://github.com/undertow-io/undertow/commit/a18574a4da09449d855c0a7e58dfca3e9e2e488e (2.2.0.Final)
 CVE-2020-10686 (A flaw was found in Keycloak version 8.0.2 and 9.0.0, and was fixed in ...)
 	NOT-FOR-US: Keycloak
 CVE-2020-10685 (A flaw was found in Ansible Engine affecting Ansible Engine versions 2 ...)
-- 
cgit v1.2.3