Thorsten Alteholz · Thorsten Alteholz · Thorsten Alteholz · e4250239 · e4250239
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2995,6 +2995,7 @@ CVE-2018-19533
 CVE-2018-19532 (A NULL pointer dereference vulnerability exists in the function ...)
 	- libpodofo <unfixed> (low)
 	[stretch] - libpodofo <no-dsa> (Minor issue)
+	[jessie] - libpodofo <no-dsa> (Minor issue)
 	NOTE: https://sourceforge.net/p/podofo/tickets/32/
 CVE-2018-19531 (HTTL (aka Hyper-Text Template Language) through 1.0.11 allows remote ...)
 	NOT-FOR-US: HTTL
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -50,15 +50,15 @@ samba (Emilio Pozuelo)
 salt (Mike Gabriel)
  NOTE: 20181128: Have spent 0.75h on looking for the actual commits that fixed both open CVEs.
  NOTE: 20181128: No such URLs / hints / messages in Git log found.
-  
+--
+sleuthkit
+  NOTE: seem to be more problems than mentioned in the CVE if nodesize == rec_off or (rec_off + keylen) == nodesize
 --
 symfony (Roberto C. Sánchez)
 --
 systemd
  NOTE: 20181119: tmpfiles.d issues remain, fix invasive, consider backporting all of tmpfiles.c (anarcat)
 --
-tcpdump (Thorsten Alteholz)
--
 tiff (Hugo Lefeuvre)
  NOTE: CVE-2018-19210: Working on a patch, see https://gitlab.com/libtiff/libtiff/merge_requests/47
  NOTE: CVE-2018-18661: Easy to patch, but unable to reproduce the error.