From eb82ac203044b4f3c2d86209a4106c2d40c19f4e Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Fri, 18 Sep 2020 15:02:55 +0200
Subject: track gnupg issue not affecting Debian packages

---
 data/CVE/list | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/data/CVE/list b/data/CVE/list
index 78a614fd2d..d53f2064cb 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1,3 +1,7 @@
+CVE-2020-XXXX [gpg: buffer overflow in import of key with AEAD preference]
+	- gnupg2 <not-affected> (Not affected version was ever uploaded to Debian)
+	NOTE: https://dev.gnupg.org/T5050
+	NOTE: https://lists.gnupg.org/pipermail/gnupg-announce/2020q3/000448.html
 CVE-2020-25764
 	RESERVED
 CVE-2020-25763
-- 
cgit v1.2.3