Mike Gabriel · Mike Gabriel · Mike Gabriel · Mike Gabriel · bb28d04b · bb28d04b
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2546,7 +2546,7 @@ CVE-2019-11339 (The studio profile decoder in libavcodec/mpeg4videodec.c in FFmp
 CVE-2019-11338 (libavcodec/hevcdec.c in FFmpeg 4.1.2 mishandles detection of duplicate ...)
 	{DSA-4449-1}
 	- ffmpeg 7:4.1.3-1
-	- libav <undetermined>
+	- libav <unfixed>
 	NOTE: https://github.com/FFmpeg/FFmpeg/commit/54655623a82632e7624714d7b2a3e039dc5faa7e
 CVE-2019-11337
 	RESERVED
@@ -7309,7 +7309,8 @@ CVE-2019-9721 (A denial of service in the subtitle decoder in FFmpeg 4.1 allows
 	- ffmpeg 7:4.1.3-1 (bug #926666)
 	[stretch] - ffmpeg <not-affected> (Vulnerable code not present)
 	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/894995c41e0795c7a44f81adc4838dedc3932e65
-	- libav <undetermined>
+	- libav <unfixed>
+	[jessie] - libav <not-affected> (Vulnerable code not present)
 CVE-2019-9720
 	RESERVED
 CVE-2019-9719
@@ -7318,7 +7319,8 @@ CVE-2019-9718 (In FFmpeg 4.1, a denial of service in the subtitle decoder allows
 	{DSA-4449-1}
 	- ffmpeg 7:4.1.3-1 (low; bug #926666)
 	NOTE: https://git.ffmpeg.org/gitweb/ffmpeg.git/commit/1f00c97bc3475c477f3c468cf2d924d5761d0982
-	- libav <undetermined>
+	- libav <unfixed>
+	[jessie] - libav <not-affected> (Vulnerable code not present)
 CVE-2019-9717
 	RESERVED
 CVE-2019-9716
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -101,6 +101,10 @@ python3.4 (Roberto C. Sánchez)
  NOTE: 20190519: Patches integrated for CVE-2018-14647, CVE-2019-9636, CVE-2019-9947 and CVE-2019-9740 (roberto)
 --
 qemu (Mike Gabriel)
+  NOTE: 20190528: An upload candidate is waiting for being tested on real hardware.
+  NOTE: 20190528: Still need to set up a notebook with jessie installed for testing.
+  NOTE: 20190528: Will also mail a request for testing to the mailing list later
+  NOTE: 20190528: today.
 --
 ruby-omniauth (Abhijith PA)
  NOTE: CVE-2015-9284: The vulnerability is rathar bad, especially in combination with other