From 5d68275ce446569c27653b369ded838ca23755d3 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Fri, 14 Feb 2020 20:43:23 +0100
Subject: Update status for CVE-2014-0193

Since the fix went upstream in 3.9.1 and the fix actually entered
unstable's version with the 3.9.9.Final-1 move the tracking there. It
got fixed before then afterwards the source was removed from the
archive.
---
 data/CVE/2014.list | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/data/CVE/2014.list b/data/CVE/2014.list
index f7b1cbad40..0285d32616 100644
--- a/data/CVE/2014.list
+++ b/data/CVE/2014.list
@@ -26110,8 +26110,7 @@ CVE-2014-0194
 	REJECTED
 CVE-2014-0193 (WebSocket08FrameDecoder in Netty 3.6.x before 3.6.9, 3.7.x before 3.7. ...)
 	- netty <not-affected> (WebSocket08FrameDecoder function not present; bug #746639)
-	- netty-3.9 <removed>
-	[stretch] - netty-3.9 3.9.9.Final-1
+	- netty-3.9 3.9.9.Final-1
 	NOTE: https://github.com/netty/netty/commit/48edb7802b42b0e2eb5a55d8eca390e0c9066783
 CVE-2014-0192 (Foreman 1.4.0 before 1.5.0 does not properly restrict access to provis ...)
 	- foreman <itp> (bug #663101)
-- 
cgit v1.2.3