Remove no-dsa tag for libraw in stretch

    CVE-2017-14608, CVE-2017-16909, CVE-2017-16910, CVE-2018-5800
    CVE-2018-5801, CVE-2018-5802, CVE-2018-5804, CVE-2018-5805,
    CVE-2018-5806, CVE-2018-5807, CVE-2018-5808, CVE-2018-5810,
    CVE-2018-5811, CVE-2018-5812, CVE-2018-5813, CVE-2018-5815,
    CVE-2018-5817, CVE-2018-5818, CVE-2018-5819, CVE-2018-20363,
    CVE-2018-20364 and CVE-2018-20365

Mark CVE-2018-5809, CVE-2018-10528, CVE-2018-10529, CVE-2018-20337,
CVE-2020-15503 CVE-2020-24889 not-affected

1 files changed, 4 insertions, 23 deletions

diff --git a/data/CVE/list.2018 b/data/CVE/list.2018
index 283e26736e..e694ff2bb5 100644
--- a/data/CVE/list.2018
+++ b/data/CVE/list.2018
@@ -2555,7 +2555,6 @@ CVE-2018-20366
 	RESERVED
 CVE-2018-20365 (LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer overflow ...)
 	- libraw 0.19.2-2 (bug #917111)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/195
 	NOTE: Fixed by: https://github.com/LibRaw/LibRaw/commit/7e29b9f29449fde30cc878fbb137d61c14bba3a4
@@ -2563,7 +2562,6 @@ CVE-2018-20365 (LibRaw::raw2image() in libraw_cxx.cpp has a heap-based buffer ov
 	NOTE: CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 have same root cause
 CVE-2018-20364 (LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL point ...)
 	- libraw 0.19.2-2 (bug #917112)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/194
 	NOTE: Fixed by: https://github.com/LibRaw/LibRaw/commit/7e29b9f29449fde30cc878fbb137d61c14bba3a4
@@ -2571,7 +2569,6 @@ CVE-2018-20364 (LibRaw::copy_bayer in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL
 	NOTE: CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 have same root cause
 CVE-2018-20363 (LibRaw::raw2image in libraw_cxx.cpp in LibRaw 0.19.1 has a NULL pointe ...)
 	- libraw 0.19.2-2 (bug #917113)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/193
 	NOTE: Fixed by: https://github.com/LibRaw/LibRaw/commit/7e29b9f29449fde30cc878fbb137d61c14bba3a4
@@ -2670,7 +2667,7 @@ CVE-2018-20338 (Zoho ManageEngine OpManager 12.3 before build 123239 allows SQL
 	NOT-FOR-US: Zoho ManageEngine OpManager
 CVE-2018-20337 (There is a stack-based buffer overflow in the parse_makernote function ...)
 	- libraw 0.19.2-1 (bug #917080)
-	[stretch] - libraw <no-dsa> (Minor issue)
+	[stretch] - libraw <not-affected> (Vulnerable code not present)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/LibRaw/LibRaw/issues/192
 CVE-2018-20336 (An issue was discovered in ASUSWRT 3.0.0.4.384.20308. There is a stack ...)
@@ -28869,14 +28866,14 @@ CVE-2018-10530
 	RESERVED
 CVE-2018-10529 (An issue was discovered in LibRaw 0.18.9. There is an out-of-bounds re ...)
 	- libraw 0.18.11-1 (low; bug #897186)
-	[stretch] - libraw <no-dsa> (Minor issue)
+	[stretch] - libraw <not-affected> (Vulnerable code not present)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	[wheezy] - libraw <no-dsa> (Minor issue)
 	NOTE: https://github.com/LibRaw/LibRaw/commit/f0c505a3e5d47989a5f69be2d0d4f250af6b1a6c
 	NOTE: https://github.com/LibRaw/LibRaw/issues/144
 CVE-2018-10528 (An issue was discovered in LibRaw 0.18.9. There is a stack-based buffe ...)
 	- libraw 0.18.11-1 (low; bug #897185)
-	[stretch] - libraw <no-dsa> (Minor issue)
+	[stretch] - libraw <not-affected> (Vulnerable code not present)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	[wheezy] - libraw <no-dsa> (Minor issue)
 	NOTE: https://github.com/LibRaw/LibRaw/commit/895529fc2f2eb8bc633edd6b04b5b237eb4db564
@@ -41406,19 +41403,16 @@ CVE-2018-5820 (In Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android
 CVE-2018-5819 (An error within the "parse_sinar_ia()" function (internal/dcraw_common ...)
 	{DLA-1734-1}
 	- libraw 0.19.1-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: https://www.flexera.com/company/secunia-research/advisories/SR-2018-27.html
 	NOTE: https://github.com/LibRaw/LibRaw/commit/9eb76dc153f5acf42ec7325a33fe7ccdcadaf8d6
 CVE-2018-5818 (An error within the "parse_rollei()" function (internal/dcraw_common.c ...)
 	{DLA-1734-1}
 	- libraw 0.19.1-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: https://www.flexera.com/company/secunia-research/advisories/SR-2018-27.html
 	NOTE: https://github.com/LibRaw/LibRaw/commit/9eb76dc153f5acf42ec7325a33fe7ccdcadaf8d6
 CVE-2018-5817 (A type confusion error within the "unpacked_load_raw()" function withi ...)
 	{DLA-1734-1}
 	- libraw 0.19.1-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: https://www.flexera.com/company/secunia-research/advisories/SR-2018-27.html
 	NOTE: https://github.com/LibRaw/LibRaw/commit/9eb76dc153f5acf42ec7325a33fe7ccdcadaf8d6
 CVE-2018-5816 (An integer overflow error within the "identify()" function (internal/d ...)
@@ -41429,7 +41423,6 @@ CVE-2018-5816 (An integer overflow error within the "identify()" function (inter
 	NOTE: Issue caused by an incomplete fix for CVE-2018-5804
 CVE-2018-5815 (An integer overflow error within the "parse_qt()" function (internal/d ...)
 	- libraw 0.18.13-1 (low)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: http://seclists.org/bugtraq/2018/Jul/58
 CVE-2018-5814 (In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4. ...)
@@ -41440,54 +41433,45 @@ CVE-2018-5814 (In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and
 	NOTE: https://git.kernel.org/linus/c171654caa875919be3c533d3518da8be5be966e
 CVE-2018-5813 (An error within the "parse_minolta()" function (dcraw/dcraw.c) in LibR ...)
 	- libraw 0.18.11-1 (low)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-13/
 CVE-2018-5812 (An error within the "nikon_coolscan_load_raw()" function (internal/dcr ...)
 	- libraw 0.18.11-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
 CVE-2018-5811 (An error within the "nikon_coolscan_load_raw()" function (internal/dcr ...)
 	- libraw 0.18.11-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
 CVE-2018-5810 (An error within the "rollei_load_raw()" function (internal/dcraw_commo ...)
 	- libraw 0.18.11-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
 CVE-2018-5809 (An error within the "LibRaw::parse_exif()" function (internal/dcraw_co ...)
 	- libraw 0.18.11-1
-	[stretch] - libraw <no-dsa> (Minor issue)
+	[stretch] - libraw <not-affected> (Vulnerable code not present)
 	[jessie] - libraw <not-affected> (Vulnerable code not present)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-9/
 	NOTE: https://github.com/LibRaw/LibRaw/commit/fd6330292501983ac75fe4162275794b18445bd9
 CVE-2018-5808 (An error within the "find_green()" function (internal/dcraw_common.cpp ...)
 	{DLA-1734-1}
 	- libraw 0.18.11-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-9/
 	NOTE: https://github.com/LibRaw/LibRaw/commit/fd6330292501983ac75fe4162275794b18445bd9
 CVE-2018-5807 (An error within the "samsung_load_raw()" function (internal/dcraw_comm ...)
 	- libraw 0.18.11-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-10/
 CVE-2018-5806 (An error within the "leaf_hdr_load_raw()" function (internal/dcraw_com ...)
 	- libraw 0.18.8-1 (low)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-03
 CVE-2018-5805 (A boundary error within the "quicktake_100_load_raw()" function (inter ...)
 	- libraw 0.18.8-1 (low)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-03
 CVE-2018-5804 (A type confusion error within the "identify()" function (internal/dcra ...)
 	- libraw 0.18.8-1 (low)
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-03
 CVE-2018-5803 (In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, 4 ...)
@@ -41497,21 +41481,18 @@ CVE-2018-5803 (In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.1
 CVE-2018-5802 (An error within the "kodak_radc_load_raw()" function (internal/dcraw_c ...)
 	{DLA-1734-1}
 	- libraw 0.18.7-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[wheezy] - libraw <ignored> (Minor issue)
 	NOTE: https://packetstormsecurity.com/files/146172/secunia-libraw.txt
 	NOTE: https://github.com/LibRaw/LibRaw/commit/8682ad204392b914ab1cc6ebcca9c27c19c1a4b4
 CVE-2018-5801 (An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) i ...)
 	{DLA-1734-1}
 	- libraw 0.18.7-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[wheezy] - libraw <ignored> (Minor issue)
 	NOTE: https://packetstormsecurity.com/files/146172/secunia-libraw.txt
 	NOTE: https://github.com/LibRaw/LibRaw/commit/8682ad204392b914ab1cc6ebcca9c27c19c1a4b4
 CVE-2018-5800 (An off-by-one error within the "LibRaw::kodak_ycbcr_load_raw()" functi ...)
 	{DLA-1734-1}
 	- libraw 0.18.7-1
-	[stretch] - libraw <no-dsa> (Minor issue)
 	[wheezy] - libraw <ignored> (Minor issue)
 	NOTE: https://packetstormsecurity.com/files/146172/secunia-libraw.txt
 	NOTE: https://github.com/LibRaw/LibRaw/commit/8682ad204392b914ab1cc6ebcca9c27c19c1a4b4