From 68c029a83d29e6fbde854dd0aa5684d3e0a412a6 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 30 Jan 2020 20:28:17 +0100
Subject: Add fixed version for CVE-2019-20387/libsolv

---
 data/CVE/2019.list | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index 6644f66b52..73abcb5265 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -151,7 +151,7 @@ CVE-2019-20388 (xmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlS
 	[jessie] - libxml2 <no-dsa> (Minor issue)
 	NOTE: Proposed merge request: https://gitlab.gnome.org/GNOME/libxml2/merge_requests/68
 CVE-2019-20387 (repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-ba ...)
-	- libsolv <unfixed> (bug #949611)
+	- libsolv 0.6.36-2 (bug #949611)
 	NOTE: https://github.com/openSUSE/libsolv/commit/fdb9c9c03508990e4583046b590c30d958f272da (0.7.6)
 CVE-2019-20386 (An issue was discovered in button_open in login/logind-button.c in sys ...)
 	- systemd 243-5
-- 
cgit v1.2.3