follow sec team and mark some CVEs of glibc as no-dsa

2 files changed, 4 insertions, 0 deletions

diff --git a/data/CVE/list.2021 b/data/CVE/list.2021
index aa131c5ff1..a0164e4e98 100644
--- a/data/CVE/list.2021
+++ b/data/CVE/list.2021
@@ -6022,12 +6022,14 @@ CVE-2021-3999 [Off-by-one buffer overflow/underflow in getcwd()]
 	- glibc <unfixed>
 	[bullseye] - glibc <no-dsa> (Minor issue)
 	[buster] - glibc <no-dsa> (Minor issue)
+	[stretch] - glibc <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=28769
 CVE-2021-3998 [Unexpected return value from realpath() for too long results]
 	RESERVED
 	- glibc <unfixed>
 	[bullseye] - glibc <no-dsa> (Minor issue)
 	[buster] - glibc <no-dsa> (Minor issue)
+	[stretch] - glibc <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=28770
 	NOTE: https://patchwork.sourceware.org/project/glibc/patch/20220113055920.3155918-1-siddhesh@sourceware.org/
 CVE-2021-3997 [Uncontrolled recursion in systemd's systemd-tmpfiles]
diff --git a/data/CVE/list.2022 b/data/CVE/list.2022
index ec40d5ca0d..fc6847329a 100644
--- a/data/CVE/list.2022
+++ b/data/CVE/list.2022
@@ -1383,11 +1383,13 @@ CVE-2022-23219 (The deprecated compatibility function clnt_create in the sunrpc
 	- glibc 2.33-3
 	[bullseye] - glibc <no-dsa> (Minor issue)
 	[buster] - glibc <no-dsa> (Minor issue)
+	[stretch] - glibc <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22542
 CVE-2022-23218 (The deprecated compatibility function svcunix_create in the sunrpc mod ...)
 	- glibc 2.33-3
 	[bullseye] - glibc <no-dsa> (Minor issue)
 	[buster] - glibc <no-dsa> (Minor issue)
+	[stretch] - glibc <no-dsa> (Minor issue)
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=28768
 CVE-2022-23217
 	RESERVED