From 9c60750b704fc70869615edad6cdb7d66e9f55ff Mon Sep 17 00:00:00 2001
From: Markus Koschany <apo@debian.org>
Date: Sat, 10 Oct 2020 18:00:00 +0200
Subject: Update guacamole-client note in dla-needed.txt

---
 data/dla-needed.txt | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/data/dla-needed.txt b/data/dla-needed.txt
index 2946ac55e1..067d8098f7 100644
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -77,6 +77,11 @@ golang-1.8
 golang-golang-x-net-dev
 --
 guacamole-client (Markus Koschany)
+  NOTE: 20201010: Open CVE do not affect the client. Reported my findings to
+  NOTE: the maintainers and the security team. Waiting for feedback. I am
+  NOTE: inclined to mark the package as EOL anyway because the client is
+  NOTE: incompatible with the secure 1.2.0 server version and due to the lack of
+  NOTE: maintainance in Debian.
 --
 jupyter-notebook
   NOTE: 20200711: Vulnerable to (at least) CVE-2018-19351. (lamby)
-- 
cgit v1.2.3