From f9e2f56f93bf986da291a7bb14bcf441287af1d4 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 20 Feb 2022 21:18:47 +0100
Subject: Add CVE-2022-0685/vim

---
 data/CVE/2022.list | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/data/CVE/2022.list b/data/CVE/2022.list
index 1f7e2fb1ad..ee49d39adc 100644
--- a/data/CVE/2022.list
+++ b/data/CVE/2022.list
@@ -29,7 +29,11 @@ CVE-2022-0686 (Authorization Bypass Through User-Controlled Key in NPM url-parse
 	NOTE: https://huntr.dev/bounties/55fd06cd-9054-4d80-83be-eb5a454be78c
 	NOTE: https://github.com/unshiftio/url-parse/commit/d5c64791ef496ca5459ae7f2176a31ea53b127e5 (1.5.8)
 CVE-2022-0685 (Use of Out-of-range Pointer Offset in GitHub repository vim/vim prior  ...)
-	TODO: check
+	- vim <unfixed>
+	[bullseye] - vim <no-dsa> (Minor issue)
+	[buster] - vim <no-dsa> (Minor issue)
+	NOTE: https://huntr.dev/bounties/27230da3-9b1a-4d5d-8cdf-4b1e62fcd782
+	NOTE: https://github.com/vim/vim/commit/5921aeb5741fc6e84c870d68c7c35b93ad0c9f87 (v8.2.4418)
 CVE-2022-0684
 	RESERVED
 CVE-2022-25367
-- 
cgit v1.2.3