data/CVE/list

@@ -10725,15 +10725,15 @@ CVE-2019-5421
 	RESERVED
 CVE-2019-5420 [Possible Remote Code Execution Exploit in Rails Development Mode]
 	RESERVED
-	- rails <unfixed> (bug #924521)
+	- rails 2:5.2.2.1+dfsg-1 (bug #924521)
 	NOTE: https://www.openwall.com/lists/oss-security/2019/03/13/3
 CVE-2019-5419 [Denial of Service Vulnerability in Action View]
 	RESERVED
-	- rails <unfixed> (bug #924520)
+	- rails 2:5.2.2.1+dfsg-1 (bug #924520)
 	NOTE: https://www.openwall.com/lists/oss-security/2019/03/13/4
 CVE-2019-5418 [File Content Disclosure in Action View]
 	RESERVED
-	- rails <unfixed> (bug #924520)
+	- rails 2:5.2.2.1+dfsg-1 (bug #924520)
 	NOTE: https://www.openwall.com/lists/oss-security/2019/03/13/5
 CVE-2019-5417 (A path traversal vulnerability in serve npm package version 7.0.1 allo ...)
 	TODO: check
@@ -34535,7 +34535,10 @@ CVE-2018-15891
 CVE-2018-15890
 	RESERVED
 CVE-2018-15889 (In podofo 0.9.6, the function PoDoFo::PdfParser::ReadObjects() in base ...)
-	NOTE: Duplicate of CVE-2018-5783
+	- libpodofo <unfixed> (low; bug #916167)
+	[stretch] - libpodofo <no-dsa> (Minor issue)
+	[jessie] - libpodofo <no-dsa> (Minor issue)
+	NOTE: (possible, but not yet confirmed) duplicate of CVE-2018-5783
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1620065
 	NOTE: https://sourceforge.net/p/podofo/tickets/27/
 CVE-2018-15888 (An issue was discovered in ASPCMS 2.5.6. When registering ordinary use ...)