Thorsten Alteholz · Thorsten Alteholz · Thorsten Alteholz · Thorsten Alteholz · Thorsten Alteholz · d0e10800
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2339,10 +2339,12 @@ CVE-2018-12036 (OWASP Dependency-Check before 3.2.0 allows attackers to write to
 CVE-2018-12035 (In YARA 3.7.1 and prior, parsing a specially crafted compiled rule ...)
 	- yara 3.7.1-3 (low)
 	[stretch] - yara <no-dsa> (Minor issue)
+	[jessie] - yara <no-dsa> (Minor issue)
 	NOTE: https://github.com/VirusTotal/yara/issues/891
 CVE-2018-12034 (In YARA 3.7.1 and prior, parsing a specially crafted compiled rule ...)
 	- yara 3.7.1-3 (low)
 	[stretch] - yara <no-dsa> (Minor issue)
+	[jessie] - yara <no-dsa> (Minor issue)
 	NOTE: https://github.com/VirusTotal/yara/issues/891
 CVE-2018-12033
 	RESERVED
@@ -19365,16 +19367,19 @@ CVE-2018-5806 [NULL pointer dereference in leaf_hdr_load_raw() function in inter
 	RESERVED
 	- libraw 0.18.8-1 (low)
 	[stretch] - libraw <no-dsa> (Minor issue)
+	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-03
 CVE-2018-5805 [Stack-based buffer overflow in quicktake_100_load_raw() function in internal/dcraw_common.cpp]
 	RESERVED
 	- libraw 0.18.8-1 (low)
 	[stretch] - libraw <no-dsa> (Minor issue)
+	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-03
 CVE-2018-5804 [type confusion error in identify() function in internal/dcraw_common.cpp]
 	RESERVED
 	- libraw 0.18.8-1 (low)
 	[stretch] - libraw <no-dsa> (Minor issue)
+	[jessie] - libraw <no-dsa> (Minor issue)
 	NOTE: https://secuniaresearch.flexerasoftware.com/secunia_research/2018-03
 CVE-2018-5803 (In the Linux Kernel before version 4.15.8, 4.14.25, 4.9.87, 4.4.121, ...)
 	{DSA-4188-1 DSA-4187-1 DLA-1369-1}
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -39,6 +39,10 @@ firefox-esr (Emilio Pozuelo)
 --
 git
 --
+graphicsmagick
+--
+intel-microcode
+--
 ipsec-tools
  NOTE: CVE-2016-10396 fixed in wheezy. No further point release so this should be fixed this way instead.
 --
@@ -101,6 +105,8 @@ slurm-llnl (Thorsten Alteholz)
 --
 thunderbird (Emilio Pozuelo)
 --
+tiff
+--
 tiff3 (Holger Levsen)
 --
 tomcat8 (Roberto C. Sánchez)