Brian May <bam@debian.org> writes: > I notice that kf5-messagelib is listed in dla-needed.txt. > > I also notice that the only security issue listed for kf5-messagelib, > CVE-2017-17689, is listed as no-DSA. I noticed that ipsec-tools is in the same situation with CVE-2016-10396. -- Brian May <bam@debian.org>