Thorsten Alteholz · Thorsten Alteholz · Thorsten Alteholz · 5d6c4a09 · 5d6c4a09
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -12278,7 +12278,9 @@ CVE-2019-17632 (In Eclipse Jetty versions 9.4.21.v20190926, 9.4.22.v20191022, an
 	[buster] - jetty9 <no-dsa> (Minor issue)
 	[stretch] - jetty9 <no-dsa> (Minor issue)
 	- jetty8 <removed>
+	[jessie] - jetty8 <not-affected> (vulnerable code introduced later)
 	- jetty <removed>
+	[jessie] - jetty <not-affected> (vulnerable code introduced later)
 	NOTE: https://bugs.eclipse.org/bugs/show_bug.cgi?id=553443
 CVE-2019-17631 (From Eclipse OpenJ9 0.15 to 0.16, access to diagnostic operations such ...)
 	NOT-FOR-US: Eclipse OpenJ9
@@ -206094,7 +206096,6 @@ CVE-2015-6665 (Cross-site scripting (XSS) vulnerability in the Ajax handler in D
 	NOTE: http://www.openwall.com/lists/oss-security/2015/08/21/5
 CVE-2015-6673 (Use-after-free vulnerability in Decoder.cpp in libpgf before 6.15.32. ...)
 	- libpgf 6.14.12-3.2 (bug #798032)
-	[jessie] - libpgf <no-dsa> (Minor issue, can be fixed via a point release)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/08/19/14
 	NOTE: Details on the CVE assignment: http://www.openwall.com/lists/oss-security/2015/08/25/9
 	NOTE: https://sourceforge.net/p/libpgf/code/147/
--- a/data/DLA/list
+++ b/data/DLA/list
+[15 Dec 2019] DLA-2035-1 libpgf - security update
+	{CVE-2015-6673}
+	[jessie] - libpgf 6.14.12-3+deb8u1
 [14 Dec 2019] DLA-2034-1 davical - security update
 	{CVE-2019-18345 CVE-2019-18346 CVE-2019-18347}
 	[jessie] - davical 1.1.3.1-1+deb8u1