Reserve DLA-3203-1 for nginx

3 files changed, 3 insertions, 5 deletions

diff --git a/data/CVE/list b/data/CVE/list
index 9ea8047738..3f66bbcafa 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -102703,7 +102703,6 @@ CVE-2021-35475 (SAS Environment Manager 2.5 allows XSS through the Name field wh
 CVE-2021-3618 (ALPACA is an application layer protocol content confusion attack, expl ...)
 	- nginx 1.20.2-2 (bug #991328)
 	[bullseye] - nginx 1.18.0-6.1+deb11u2
-	[buster] - nginx <no-dsa> (Minor issue)
 	[stretch] - nginx <no-dsa> (Minor issue)
 	- vsftpd <unfixed> (bug #991329)
 	[bullseye] - vsftpd <no-dsa> (Minor issue)
diff --git a/data/DLA/list b/data/DLA/list
index 8d64ef266d..4c0bfca5a8 100644
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,6 @@
+[23 Nov 2022] DLA-3203-1 nginx - security update
+	{CVE-2021-3618 CVE-2022-41741 CVE-2022-41742}
+	[buster] - nginx 1.14.2-2+deb10u5
 [22 Nov 2022] DLA-3202-1 libarchive - security update
 	{CVE-2019-19221 CVE-2021-23177 CVE-2021-31566}
 	[buster] - libarchive 3.3.3-4+deb10u2
diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 2c68f8b87f..9f38cd57c7 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -170,10 +170,6 @@ netatalk
   NOTE: 20220816: Programming language: C.
   NOTE: 20220912: We get errors in the log, not present on bookworm. Needs more investigation. (stefanor)
 --
-nginx (Markus Koschany)
-  NOTE: 20221111: Programming language: C.
-  NOTE: 20221111: Upcoming DSA + follow fixes from bullseye 11.4 (Beuc/front-desk)
---
 node-cached-path-relative
   NOTE: 20221111: Programming language: JavaScript.
   NOTE: 20221111: Follow fixes from bullseye 11.3 (Beuc/front-desk)