From 156e68da4044f5daf207f0041e11d23cfcb2693b Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 8 Feb 2021 12:35:34 +0100
Subject: Add temporary entry for libzstd issue

---
 data/CVE/2019.list | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'data/CVE/2019.list')

diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index 83a69defdd..346458f240 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -1,3 +1,6 @@
+CVE-2019-XXXX [zstd adds read permissions to files while being compressed or uncompressed]
+	- libzstd 1.4.8+dfsg-1 (bug #981404)
+	NOTE: https://github.com/facebook/zstd/issues/1630
 CVE-2019-25018 (In the rcp client in MIT krb5-appl through 1.0.3, malicious servers co ...)
 	- krb5-appl <removed>
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1131109
-- 
cgit v1.2.3