Salvatore Bonaccorso · Salvatore Bonaccorso · Salvatore Bonaccorso · Salvatore Bonaccorso · Salvatore Bonaccorso · 8469ec59
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1038,11 +1038,13 @@ CVE-2018-14073 (libsixel 1.8.1 has a memory leak in sixel_allocator_new in alloc
 	[stretch] - libsixel <no-dsa> (Minor issue)
 	[jessie] - libsixel <postponed> (Minor issue)
 	NOTE: https://github.com/saitoha/libsixel/issues/67#issuecomment-404989926
+	NOTE: https://github.com/saitoha/libsixel/commit/f94bc6fec696abd77be275226f28409602bd1f27
+
 CVE-2018-14072 (libsixel 1.8.1 has a memory leak in sixel_decoder_decode in decoder.c, ...)
 	- libsixel <unfixed> (low; bug #903858)
 	[stretch] - libsixel <no-dsa> (Minor issue)
 	[jessie] - libsixel <postponed> (Minor issue)
-	NOTE: https://github.com/saitoha/libsixel/issues/67
+	NOTE: https://github.com/saitoha/libsixel/issues/67#issue-341198610
 	NOTE: https://github.com/saitoha/libsixel/commit/f94bc6fec696abd77be275226f28409602bd1f27
 CVE-2018-14071 (The Geo Mashup plugin before 1.10.4 for WordPress has insufficient ...)
 	NOT-FOR-US: Geo Mashup plugin for WordPress
@@ -8980,9 +8982,9 @@ CVE-2018-10901
 	RESERVED
 CVE-2018-10900 [local privilege escalation]
 	RESERVED
-	- network-manager-vpnc <unfixed>
+	- network-manager-vpnc <unfixed> (bug #904255)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/07/20/3
-	NOTE: https://gitlab.gnome.org/GNOME/NetworkManager-vpnc/commit/07ac18a32b4
+	NOTE: https://gitlab.gnome.org/GNOME/NetworkManager-vpnc/commit/07ac18a32b4e361a27ef48ac757d36cbb46e8e12
 CVE-2018-10899
 	RESERVED
 CVE-2018-10898
--- a/data/DLA/list
+++ b/data/DLA/list
 [22 Jul 2018] DLA-1438-1 opencv - security update
-	{CVE-2016-1516 CVE-2017-12597 CVE-2017-12598 CVE-2017-12599 CVE-2017-12601 CVE-2017-12603 CVE-2017-12604 CVE-2017-12605 CVE-2017-12606 CVE-2017-12862 CVE-2017-12863 CVE-2017-12864 CVE-2017-14136 CVE-2017-17760 CVE-2017-1000450 CVE-2018-5268 CVE-2018-5269}
+	{CVE-2016-1516 CVE-2017-12597 CVE-2017-12598 CVE-2017-12599 CVE-2017-12601 CVE-2017-12603 CVE-2017-12604 CVE-2017-12605 CVE-2017-12606 CVE-2017-12862 CVE-2017-12863 CVE-2017-12864 CVE-2017-17760 CVE-2017-1000450 CVE-2018-5268 CVE-2018-5269}
 	[jessie] - opencv 2.4.9.1+dfsg-1+deb8u2
 [21 Jul 2018] DLA-1437-1 slurm-llnl - security update
 	{CVE-2018-7033 CVE-2018-10995}

--- a/data/dsa-needed.txt
+++ b/data/dsa-needed.txt
@@ -60,6 +60,8 @@ mutt (carnil)
  We will wait first for upload to unstable, and watch for regression reports
  Non-urgent need for an update.
 --
+network-manager-vpnc (carnil)
+--
 openjdk-8 (jmm)
 --
 openjfx