From b8e79c5a4f92ef980d3ba8b89f3cbbdebf89e1aa Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sun, 28 Feb 2021 13:35:28 +0100
Subject: Mark CVE-2019-508{6,7}/xcftools as no-dsa

---
 data/CVE/2019.list | 2 ++
 1 file changed, 2 insertions(+)

(limited to 'data/CVE/2019.list')

diff --git a/data/CVE/2019.list b/data/CVE/2019.list
index d8a976c9f7..111a6a7e8f 100644
--- a/data/CVE/2019.list
+++ b/data/CVE/2019.list
@@ -42353,11 +42353,13 @@ CVE-2019-5088 (An exploitable memory corruption vulnerability exists in Investin
 CVE-2019-5087 (An exploitable integer overflow vulnerability exists in the flattenInc ...)
 	{DLA-2553-1}
 	- xcftools 1.0.7-6.1 (bug #945317)
+	[buster] - xcftools <no-dsa> (Minor issue; can be fixed via point release)
 	NOTE: https://github.com/j-jorge/xcftools/issues/13
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0879
 CVE-2019-5086 (An exploitable integer overflow vulnerability exists in the flattenInc ...)
 	{DLA-2553-1}
 	- xcftools 1.0.7-6.1 (bug #945317)
+	[buster] - xcftools <no-dsa> (Minor issue; can be fixed via point release)
 	NOTE: https://github.com/j-jorge/xcftools/issues/12
 	NOTE: https://talosintelligence.com/vulnerability_reports/TALOS-2019-0878
 CVE-2019-5085 (An exploitable code execution vulnerability exists in the DICOM packet ...)
-- 
cgit v1.2.3