From 5ff4bfb2b7dc446e5fdac42153d9e6f1d0cd9537 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 30 Nov 2020 22:11:45 +0100
Subject: Add CVE-2020-15257/containerd

---
 data/CVE/list | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/data/CVE/list b/data/CVE/list
index f53d75973f..e8b876b9e8 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -33699,6 +33699,9 @@ CVE-2020-15258 (In Wire before 3.20.x, `shell.openExternal` was used without che
 	NOT-FOR-US: Wire app
 CVE-2020-15257
 	RESERVED
+	- containerd <unfixed>
+	NOTE: https://github.com/containerd/containerd/security/advisories/GHSA-36xw-fx78-c5r4
+	TODO: check details
 CVE-2020-15256 (A prototype pollution vulnerability has been found in `object-path` &l ...)
 	- node-object-path 0.11.5-3
 	[buster] - node-object-path <no-dsa> (Minor issue; will be fixed via point release)
-- 
cgit v1.2.3