Salvatore Bonaccorso · Salvatore Bonaccorso · f020498d · f020498d
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -594,10 +594,7 @@ CVE-2018-15888 (An issue was discovered in ASPCMS 2.5.6. When registering ordina
 CVE-2017-18346
 	RESERVED
 CVE-2015-9265
-	[experimental] - libtirpc 1.0.2-0.1
-	- libtirpc <unfixed> (bug #907608)
-	NOTE: https://bugzilla.novell.com/show_bug.cgi?id=968175
-	NOTE: http://git.linux-nfs.org/?p=steved/libtirpc.git;a=commit;h=1c77f7a869bdea2a34799d774460d1f9983d45f0
+	REJECTED
 CVE-2015-9264 (Lansweeper 4.x through 6.x before 6.0.0.48 allows attackers to execute ...)
 	NOT-FOR-US: Lansweeper
 CVE-2015-9263 (An issue was discovered in post2file.php in Up.Time Monitoring Station ...)
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -69,6 +69,7 @@ libspring-java (Abhijith PA)
 libtirpc (Thorsten Alteholz)
  NOTE: 20180830: The SUSE bug report mentions more than one patch.
  NOTE: 20180830: The SUSE bug report points to CVE-2015-9265
+  NOTE: CVE-2015-9265 has been rejected (in favour of CVE-2018-14622)
 --
 libxml2 (Thorsten Alteholz)
  NOTE: 20180720: There are many open CVEs marked as <no-dsa> for jessie and stretch.