CVE-2022-24790,puma: Mark as no-dsa for Stretch

Although all existing tests pass, the new test_requests_invalid tests never
seem to finish. It is currently not possible to determine if this is caused by
a failing test or a Puma bug. The error message is:

Error reached top of thread-pool

and might be related to

https://github.com/puma/puma/issues/1502

I have opted not to apply the patch because of that. The preliminary patch to
fix CVE-2022-24790 can be found at

https://people.debian.org/~apo/lts/stretch/puma/CVE-2022-24790.patch

Also remove the no-dsa tags for CVE-2019-16770 and CVE-2020-5247 because they
will be fixed in an upcoming security update.

0 files changed, 0 insertions, 0 deletions