Track proposed updates for batik via {stretch,buster}-pu

4 files changed, 6 insertions, 2 deletions

diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index 091dfe6d4b..293c46c450 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -8379,6 +8379,8 @@ CVE-2019-17567
 CVE-2019-17566 [SSRF vulnerability]
 	RESERVED
 	- batik <unfixed> (bug #964510)
+	[buster] - batik <no-dsa> (Minor issue, will be fixed via point update)
+	[stretch] - batik <no-dsa> (Minor issue, will be fixed via point update)
 	NOTE: https://www.openwall.com/lists/oss-security/2020/06/15/2
 	NOTE: patch: http://svn.apache.org/viewvc?view=revision&revision=1871084
 	NOTE: corresponding bug: https://issues.apache.org/jira/browse/BATIK-1276
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 134c0a72d4..afebef779b 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -21,8 +21,6 @@ ansible
   NOTE: 20200508: bam: Upstream fix was reverted - https://github.com/ansible/ansible/pull/68983
   NOTE: 20200508: bam: See https://github.com/ansible/ansible/issues/67794
 --
-batik (Emilio)
---
 cacti (Abhijith PA)
   NOTE: 20200529: A patch need to be cooked up. Upstream patch not fit for jessie version (abhijith)
   NOTE: 20200620: WIP (abhijith)
diff --git a/data/next-oldstable-point-update.txt b/data/next-oldstable-point-update.txt
index b1921691ad..d552335a37 100644
--- a/data/next-oldstable-point-update.txt
+++ b/data/next-oldstable-point-update.txt
@@ -219,3 +219,5 @@ CVE-2019-1010006
 	[stretch] - atril 1.16.1-2+deb9u2
 CVE-2019-11459
 	[stretch] - atril 1.16.1-2+deb9u2
+CVE-2019-17566
+	[stretch] - batik 1.8-4+deb9u2
diff --git a/data/next-point-update.txt b/data/next-point-update.txt
index 55a02acbb5..591b149bf1 100644
--- a/data/next-point-update.txt
+++ b/data/next-point-update.txt
@@ -178,3 +178,5 @@ CVE-2020-15393
 	[buster] - linux 4.19.131-1
 CVE-2018-20669
 	[buster] - linux 4.19.131-1
+CVE-2019-17566
+	[buster] - batik 1.10-2+deb10u1