From 67721684eb013082a4a353676286351a1a9ecd7b Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 30 Jan 2020 20:33:05 +0100
Subject: Mark CVE-2019-20387/libsolv as no-dsa for buster and stretch

---
 data/CVE/list | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/data/CVE/list b/data/CVE/list
index 720b229617..42fc6421ba 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2126,6 +2126,8 @@ CVE-2019-20388 (xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlS
 	NOTE: Proposed merge request: https://gitlab.gnome.org/GNOME/libxml2/merge_requests/68
 CVE-2019-20387 (repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-ba ...)
 	- libsolv 0.6.36-2 (bug #949611)
+	[buster] - libsolv <no-dsa> (Minor issue)
+	[stretch] - libsolv <no-dsa> (Minor issue)
 	NOTE: https://github.com/openSUSE/libsolv/commit/fdb9c9c03508990e4583046b590c30d958f272da (0.7.6)
 CVE-2020-7471
 	RESERVED
-- 
cgit v1.2.3