Salvatore Bonaccorso · Salvatore Bonaccorso · Salvatore Bonaccorso · 78b63fc6
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -10883,12 +10883,13 @@ CVE-2018-20186 (An issue was discovered in Bento4 1.5.1-627. AP4_Sample::ReadDat
 	NOT-FOR-US: Bento4
 CVE-2018-20185 (In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there ...)
 	{DLA-1619-1}
-	- graphicsmagick <unfixed> (bug #916719)
+	- graphicsmagick 1.4~hg15880-1 (bug #916719)
 	NOTE: Partial fix: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/648e3977a293
 	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/582/
 	NOTE: Partial fix adressed in 1.4~hg15873-1, but according to maintainer not yet
 	NOTE: complete: Cf. https://bugs.debian.org/916719#15
 	NOTE: Fix causes more issues: https://bugzilla.suse.com/show_bug.cgi?id=1119823#c1
+	NOTE: Followup: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/c38fc0e3e465
 CVE-2018-20184 (In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based ...)
 	{DLA-1619-1}
 	- graphicsmagick 1.4~hg15873-1 (bug #916721)
@@ -37455,7 +37456,7 @@ CVE-2018-12481 (The Olive Tree Ftp Server application 1.32 for Android has a &qu
 CVE-2018-12480 (Mitigates an XSS issue in NetIQ Access Manager versions prior to 4.4 ...)
 	NOT-FOR-US: NetIQ Access Manager
 CVE-2018-12479 (A Improper Input Validation vulnerability in Open Build Service allows ...)
-	- open-build-service <unfixed> (bug #911797)
+	- open-build-service 2.9.4-1 (bug #911797)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1108435
 	NOTE: https://github.com/openSUSE/open-build-service/pull/5880
 	NOTE: https://github.com/openSUSE/open-build-service/commit/01b015ca2a320afc4fae823465d1e72da8bd60df
@@ -37485,7 +37486,7 @@ CVE-2018-12469 (Incorrect handling of an invalid value for an HTTP request param
 CVE-2018-12468 (A vulnerability in the administration console of Micro Focus GroupWise ...)
 	NOT-FOR-US: Micro Focus
 CVE-2018-12467 (Authorized users of the openbuildservice before 2.9.4 could delete ...)
-	- open-build-service <unfixed> (bug #911797)
+	- open-build-service 2.9.4-1 (bug #911797)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1100217
 	NOTE: Fixed by: https://github.com/openSUSE/open-build-service/commit/f57b660f49f830006766a8d4abc3b4af6e178063
 	NOTE: Introduced by: https://github.com/openSUSE/open-build-service/commit/990ef7cccef6f38fc1d1a1bb22a08e174dcba43b
@@ -50311,12 +50312,12 @@ CVE-2018-7691 (A potential Remote Unauthorized Access in Micro Focus Fortify Sof
 CVE-2018-7690 (A potential Remote Unauthorized Access in Micro Focus Fortify Software ...)
 	NOT-FOR-US: Micro Focus
 CVE-2018-7689 (Lack of permission checks in the InitializeDevelPackage function in ...)
-	- open-build-service <unfixed> (low; bug #903797)
+	- open-build-service 2.9.4-1 (low; bug #903797)
 	[stretch] - open-build-service <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1094819
 	NOTE: https://github.com/openSUSE/open-build-service/commit/990ef7cccef6f38fc1d1a1bb22a08e174dcba43b
 CVE-2018-7688 (A missing permission check in the review handling of openSUSE Open ...)
-	- open-build-service <unfixed> (low; bug #903796)
+	- open-build-service 2.9.4-1 (low; bug #903796)
 	[stretch] - open-build-service <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.suse.com/show_bug.cgi?id=1094820
 	NOTE: https://github.com/openSUSE/open-build-service/commit/b15cf19e9e01115f653c76ffdc8f54cd97566553