Chris Lamb · Chris Lamb · 8dbca95d · 8dbca95d
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -34571,6 +34571,7 @@ CVE-2019-14576
 CVE-2019-14575 [DxeImageVerificationHandler() fails open in case of dbx signature check]
 	RESERVED
 	- edk2 <unfixed>
+	[jessie] - edk2 <end-of-life> (non-free)
 	NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=1608
 CVE-2019-14574 (Out of bounds read in a subsystem for Intel(R) Graphics Driver version ...)
 	NOT-FOR-US: Intel Windows graphics driver
@@ -34597,6 +34598,7 @@ CVE-2019-14564
 CVE-2019-14563 [numeric truncation in MdeModulePkg/PiDxeS3BootScriptLib]
 	RESERVED
 	- edk2 <unfixed>
+	[jessie] - edk2 <end-of-life> (non-free)
 	NOTE: https://github.com/tianocore/edk2/commit/322ac05f8bbc1bce066af1dabd1b70ccdbe28891
 	NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=2001
 CVE-2019-14562
@@ -34608,6 +34610,7 @@ CVE-2019-14560
 CVE-2019-14559 [memory leak in ArpOnFrameRcvdDpc]
 	RESERVED
 	- edk2 <unfixed>
+	[jessie] - edk2 <end-of-life> (non-free)
 	NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=2031
 CVE-2019-14558
 	RESERVED
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -74,6 +74,8 @@ python3.4 (Roberto C. Sánchez)
 qemu (Utkarsh Gupta)
  NOTE: 20200210: WIP.
 --
+qtbase-opensource-src
+--
 radare2
  NOTE: 20190816: Affected by CVE-2019-14745. Vulnerable code is in
  NOTE: libr/core/bin.c. Many no-dsa issues in Jessie and Stretch.