From fe59eef0d30afde3ad29766d59523d04fbd52b21 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Mon, 27 Jul 2020 17:59:47 +0200
Subject: djbdns reintroduced in Debian

CVE-2008-4392 might already be fixed, for details
<https://bugs.debian.org/516394#261> so this might need to be checked
again and mark accordingly.
---
 data/CVE/2008.list | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'data/CVE/2008.list')

diff --git a/data/CVE/2008.list b/data/CVE/2008.list
index 18fefc128a..3fda948c39 100644
--- a/data/CVE/2008.list
+++ b/data/CVE/2008.list
@@ -6701,7 +6701,7 @@ CVE-2008-4394 (Multiple untrusted search path vulnerabilities in Portage before
 CVE-2008-4393 (Cross-site scripting (XSS) vulnerability in VeriSign Kontiki Delivery  ...)
 	NOT-FOR-US: VeriSign Kontiki
 CVE-2008-4392 (dnscache in Daniel J. Bernstein djbdns 1.05 does not prevent simultane ...)
-	- djbdns <removed> (high; bug #516394)
+	- djbdns <unfixed> (high; bug #516394)
 CVE-2008-4391 (Stack-based buffer overflow in the SetSource method in the NetCamPlaye ...)
 	NOT-FOR-US: Cisco Linksys WVC54GC
 CVE-2008-4390 (The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 s ...)
-- 
cgit v1.2.3