data/CVE/list

@@ -12555,6 +12555,7 @@ CVE-2018-8036
 	RESERVED
 	- libpdfbox-java <unfixed> (low)
 	[stretch] - libpdfbox-java <no-dsa> (Minor issue)
+	[jessie] - libpdfbox-java <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2018/06/29/2
 CVE-2018-8035
 	RESERVED
@@ -13615,6 +13616,7 @@ CVE-2018-7651 (index.js in the ssri module before 5.2.2 for Node.js is prone to
 	NOTE: nodejs not covered by security support
 CVE-2018-1000119 (Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier ...)
 	- ruby-rack-protection <unfixed> (bug #892250)
+	[jessie] - ruby-rack-protection <ignored> (Low prio package and low prio vulnerability according to RedHat)
 	[wheezy] - ruby-rack-protection <ignored> (Low prio package and low prio vulnerability according to RedHat)
 	NOTE: https://snyk.io/vuln/SNYK-RUBY-SINATRA-20470
 	NOTE: https://snyk.io/vuln/SNYK-RUBY-RACKPROTECTION-20395

data/dla-needed.txt

@@ -97,6 +97,12 @@ ruby2.1 (Santiago)
 slurm-llnl (Thorsten Alteholz)
   NOTE: CVE-2018-7033 fixed in wheezy.
 --
+sssd
+  NOTE: 20180630: no fix available, so no email sent to maintainer yet
+--
+symfony
+  NOTE: 20180630: email sent to maintainer, please wait some time before working on this package
+--
 thunderbird (Emilio Pozuelo)
 --
 tiff (Markus Koschany)

data/packages/lts-do-not-call

@@ -22,7 +22,7 @@ mercurial https://lists.debian.org/debian-lts/2017/12/msg00058.html
 nspr https://lists.debian.org/debian-lts/2016/09/msg00192.html
 nss https://lists.debian.org/debian-lts/2016/09/msg00192.html
 opencv no answer to https://lists.debian.org/debian-lts/2017/09/msg00028.html, all LTS uploads by LTS team
-openjpeg (private conversation, Mathieu would review patches)
+openjpeg2 (private conversation, Mathieu would review patches)
 openssh no answer to https://lists.debian.org/debian-lts/2016/08/msg00102.html, all LTS uploads by LTS team
 php5 (once upon a time during Squeeze LTS)
 poppler no answer to https://lists.debian.org/debian-lts/2016/04/msg00128.html, all LTS uploads by LTS team