From 80ed60e60d204b6cd2ef72a4b3865ece3c93de84 Mon Sep 17 00:00:00 2001
From: Markus Koschany <apo@debian.org>
Date: Wed, 10 Nov 2021 23:52:48 +0100
Subject: Claim libxml-security-java, salt and tomcat9 in dsa-needed.txt

---
 data/dsa-needed.txt | 9 ++++-----
 1 file changed, 4 insertions(+), 5 deletions(-)

(limited to 'data/dsa-needed.txt')

diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt
index 482cbcefeb..6678d047c0 100644
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -27,6 +27,8 @@ gpac (jmm)
 --
 icu
 --
+libxml-security-java (Markus Koschany)
+--
 linux (carnil)
   Wait until more issues have piled up, though try to regulary rebase for point
   releases to more recent v4.19.y versions.
@@ -43,7 +45,7 @@ rabbitmq-server
 --
 runc
 --
-salt
+salt (Markus Koschany)
 --
 samba/oldstable (carnil)
   We will likely only address the 'min domain uid' patch, the fixes for the CVEs
@@ -52,10 +54,7 @@ samba/oldstable (carnil)
 thunderbird (jmm)
   Rust toolchain updates needed
 --
-tomcat9
-  Markus Koschany proposed an update for CVE-2021-41079, plus a regression fix
-  from previous CVE-2021-30640 and another non-security fix for #987179, might
-  need a SRM ack.
+tomcat9 (Markus Koschany)
 --
 trafficserver (jmm)
   wait until status for CVE-2021-38161 is clarified (upstream patch got reverted)
-- 
cgit v1.2.3