Thorsten Alteholz · Thorsten Alteholz · 9c5b8a53 · 9c5b8a53
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -7819,12 +7819,14 @@ CVE-2018-11491 (ASUS HG100 devices with firmware before 1.05.12 allow unauthenti
 CVE-2018-11490 (The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly ...)
 	- giflib <unfixed> (bug #904114)
 	[stretch] - giflib <no-dsa> (Minor issue)
+	[jessie] - giflib <no-dsa> (Minor issue)
 	NOTE: https://github.com/pts/sam2p/issues/38
 	NOTE: https://sourceforge.net/p/giflib/bugs/113/
 	NOTE: Issue was reported against sam2p but issue is in dgif_lib.c from giflib.
 CVE-2018-11489 (The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly ...)
 	- giflib <unfixed> (bug #904113)
 	[stretch] - giflib <no-dsa> (Minor issue)
+	[jessie] - giflib <no-dsa> (Minor issue)
 	NOTE: https://github.com/pts/sam2p/issues/37
 	NOTE: https://sourceforge.net/p/giflib/bugs/112/
 	NOTE: Issue was reported against sam2p but issue is in dgif_lib.c from giflib.
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -33,10 +33,6 @@ firefox-esr (Emilio Pozuelo)
  NOTE: 20180525: We will need an update to Firefox ESR 60 in jessie once 52 goes EOL.
  NOTE: 20180525: This needs some backports (llvm, rustc, cargo) which need some work.
 --
-giflib (Thorsten Alteholz)
-  NOTE: 20180717: As of today, no possible fix could be found for CVE-2018-11489 and
-  NOTE: 20180717: CVE-2018-11490 while triaging these issues.
--
 git-annex
  NOTE: 20180710: See #903037 for more information and a fix for Stretch.
 --