From 803c20a6fa57ffbdbde0b7eadb7126a1196621cb Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Fri, 14 Jan 2022 14:46:38 +0100
Subject: mbedtls fixed in experimental add prosody to dsa-needed

---
 data/CVE/list       | 1 +
 data/dsa-needed.txt | 2 ++
 2 files changed, 3 insertions(+)

(limited to 'data')

diff --git a/data/CVE/list b/data/CVE/list
index b51a89f809..ba1e151e24 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7626,6 +7626,7 @@ CVE-2021-44733 (A use-after-free exists in drivers/tee/tee_shm.c in the TEE subs
 	[stretch] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=2030747
 CVE-2021-44732 (Mbed TLS before 3.0.1 has a double free in certain out-of-memory condi ...)
+	[experimental] - mbedtls 2.28.0-0.1
 	- mbedtls <unfixed> (bug #1002631)
 	NOTE: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security-advisory-2021-12
 	NOTE: https://github.com/ARMmbed/mbedtls/commit/eb490aabf6a9f47c074ec476d0d4997c2362cdbc (mbedtls-2.16.12)
diff --git a/data/dsa-needed.txt b/data/dsa-needed.txt
index bb889205e5..03d6581741 100644
--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -34,6 +34,8 @@ ndpi/oldstable
 --
 nodejs (jmm)
 --
+prosody (jmm)
+--
 puppetdb (jmm)
 --
 python-pysaml2 (jmm)
-- 
cgit v1.2.3