From 8414e9671991f4b4272a9f71dbaccf3dba948de8 Mon Sep 17 00:00:00 2001
From: Moritz Muehlenhoff <jmm@debian.org>
Date: Fri, 19 Jun 2020 22:37:32 +0200
Subject: mutt DSA node-elliptic no-dsa

---
 data/CVE/list | 2 ++
 data/DSA/list | 3 +++
 2 files changed, 5 insertions(+)

(limited to 'data')

diff --git a/data/CVE/list b/data/CVE/list
index 021b91e582..4cf12db135 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1895,6 +1895,7 @@ CVE-2020-14155 (libpcre in PCRE before 8.44 allows an integer overflow via a lar
 	NOTE: Fixed by: https://vcs.pcre.org/pcre?view=revision&revision=1761 (8.44)
 CVE-2020-14154 (Mutt before 1.14.3 proceeds with a connection even if, in response to  ...)
 	- mutt 1.14.3-1 (unimportant)
+	[buster] - mutt 1.10.1-2.1+deb10u1
 	- neomutt 20200619+dfsg.1-1 (unimportant)
 	NOTE: http://lists.mutt.org/pipermail/mutt-announce/Week-of-Mon-20200608/000022.html
 	NOTE: https://gitlab.com/muttmua/mutt/commit/bb0e6277a45a5d4c3a30d3b968eeb31d78124e95
@@ -2688,6 +2689,7 @@ CVE-2020-13823
 	RESERVED
 CVE-2020-13822 (The Elliptic package 6.5.2 for Node.js allows ECDSA signature malleabi ...)
 	- node-elliptic 6.5.3~dfsg-1 (bug #963149)
+	[buster] - node-elliptic <no-dsa> (Minor issue)
 	NOTE: https://github.com/indutny/elliptic/issues/226
 CVE-2020-13821
 	RESERVED
diff --git a/data/DSA/list b/data/DSA/list
index 9f18c2f03e..6ffb3550a0 100644
--- a/data/DSA/list
+++ b/data/DSA/list
@@ -1,3 +1,6 @@
+[19 Jun 2020] DSA-4707-1 mutt - security update
+	[stretch] - mutt 1.7.2-1+deb9u3
+	[buster] - mutt 1.10.1-2.1+deb10u2
 [18 Jun 2020] DSA-4706-1 drupal7 - security update
 	{CVE-2020-13663}
 	[stretch] - drupal7 7.52-2+deb9u11
-- 
cgit v1.2.3