From 589ebf007f166bfdc2edf5a722f3736e1b4f4891 Mon Sep 17 00:00:00 2001
From: Tomasz Kontusz <tomasz.kontusz@gmail.com>
Date: Tue, 13 Sep 2022 13:38:48 +0200
Subject: [PATCH 1/2] paramiko PYSEC-2022-166 was fixed in 2.9.3

According to https://www.paramiko.org/changelog.html CVE-2022-24302 was fixed in 2.9.3. This PR removes unaffected 2.9.* versions.
---
 vulns/paramiko/PYSEC-2022-166.yaml | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/vulns/paramiko/PYSEC-2022-166.yaml b/vulns/paramiko/PYSEC-2022-166.yaml
index d92a2449..55c98009 100644
--- a/vulns/paramiko/PYSEC-2022-166.yaml
+++ b/vulns/paramiko/PYSEC-2022-166.yaml
@@ -151,6 +151,3 @@ affected:
   - 2.9.0
   - 2.9.1
   - 2.9.2
-  - 2.9.3
-  - 2.9.4
-  - 2.9.5

From ac8fff0e3b060d22e25e89bfd79add0b9fbf9710 Mon Sep 17 00:00:00 2001
From: Tomasz Kontusz <tomasz.kontusz@gmail.com>
Date: Tue, 13 Sep 2022 16:34:11 +0200
Subject: [PATCH 2/2] PYSEC-2022-166: update ranges of affected versions

---
 vulns/paramiko/PYSEC-2022-166.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/vulns/paramiko/PYSEC-2022-166.yaml b/vulns/paramiko/PYSEC-2022-166.yaml
index 55c98009..4e2826d5 100644
--- a/vulns/paramiko/PYSEC-2022-166.yaml
+++ b/vulns/paramiko/PYSEC-2022-166.yaml
@@ -22,6 +22,8 @@ affected:
   - type: ECOSYSTEM
     events:
     - introduced: '0'
+    - fixed: 2.9.3
+    - introduced: 2.10.0
     - fixed: 2.10.1
   versions:
   - 0.1-bulbasaur