[SECURITY] [DLA 318-1] flightgear security update

, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: Mailvelope v1.1.0 Comment: https://www.mailvelope.com wsFcBAEBCAAQBQJWCqphCRAelT4n1DEeWAAADnIP/3kwnkRc3RI2DOzYmkXT

[SECURITY] [DLA 326-1] zendframework security update

terminator, allowing an attacker to add arbitrary SQL following a null byte, and thus create a SQL injection. For Debian 6 Squeeze, this issue has been fixed in zendframework version 1.10.6-1squeeze6. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la..

[SECURITY] [DLA 332-1] optipng security update

0.6.4-1+deb6u11. Regards, - - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWKTciAAoJEB6VPifUMR5YKhIP/jE5sfJZbATpWsEKYNwGKrBt v9gAhNYO7SFRAMA+olDk3

[SECURITY] [DLA 333-1] cakephp security update

) attacks, if the target application accepts XML as an input. It is caused by insecure design of Cake's Xml class. For Debian 6 Squeeze, this issue has been fixed in cakephp version 1.3.2-1.1+deb6u11. Regards, - - -- ,''`. : :' : Chris Lamb `. `

[SECURITY] [DLA 337-1] busybox security update

discovered by Gustavo Grieco. For Debian 6 Squeeze, this issue has been fixed in busybox version 1.17.1-8+deb6u11. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE---

[SECURITY] [DLA 338-1] xscreensaver security update

Squeeze, this issue has been fixed in xscreensaver version 5.11-1+deb6u11. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWNRkBAAoJEB6VPifUMR5YN

[SECURITY] [DLA 349-1] python-django security update

.3-3+squeeze15. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWVioCAAoJEB6VPifUMR5YEwUP/1E5szNqP3BYPV7yxacJ1qSF 6DIbSsiQcSmA+r0tYNpOk8e5DUj6KTcF1KnCIkoIxA

[SECURITY] [DLA 351-1] redmine security update

subjects of issues that are not visible/public. Patch by Holger Just. For Debian 6 Squeeze, this issue has been fixed in redmine version 1.0.1-2+deb6u11. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 363-1] libphp-phpmailer security update

Debian 6 Squeeze, this issue has been fixed in libphp-phpmailer version 5.1-1+deb6u11. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWZyKJ

[SECURITY] [DLA 365-1] foomatic-filters security update

convert incoming PostScript data into the printer's native format. For Debian 6 Squeeze, this issue has been fixed in foomatic-filters version 4.0.5-6+squeeze2+deb6u11 Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debi

[SECURITY] [DLA 369-1] pygments security update

. For Debian 6 Squeeze, this issue has been fixed in pygments version 1.3.1+dfsg-1+deb6u11. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE---

[SECURITY] [DLA 374-1] cacti security update

monitoring systems. For Debian 6 Squeeze, this issue has been fixed in cacti version 0.8.7g-1+squeeze9+deb6u11. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE---

[SECURITY] [DLA 374-2] cacti regression update

has been fixed in cacti version 0.8.7g-1+squeeze9+deb6u12. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWhFlaAAoJEB6VPifUMR5YZf0P/1gC

[SECURITY] [DLA 374-3] cacti regression update

+squeeze9+deb6u12. For Debian 6 Squeeze, this issue has been fixed in cacti version 0.8.7g-1+squeeze9+deb6u13. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE---

[SECURITY] [DLA 386-1] cacti security update

, this issue has been fixed in cacti version 0.8.7g-1+squeeze9+deb6u14. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWl4CaAAoJEB6VPifUMR5

[SECURITY] [DLA 388-1] dwarfutils security update

issue has been fixed in dwarfutils version 20100214-1+deb6u1. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWmMkbAAoJEB6VPifUMR5YUboP/jzd

[SECURITY] [DLA 391-1] prosody security update

been fixed in prosody version 0.7.0-1squeeze1+deb6u1. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWmg7EAAoJEB6VPifUMR5Y0n8P/RnF

[SECURITY] [DLA 404-1] nginx security update

, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWqI/TAAoJEB6VPifUMR5YdrcP/20Tm257pxDmud0zbGC8OaJV kciLXfhxIJhkzjNEDJW85uh9rIeeOabhoLDLm7uyN59v4W+tD4LVfYKHQ6XQ+RE+ dmxD+/YUzK

[SECURITY] [DLA 417-1] xdelta3 security update

allowed arbitrary code execution from input files. For Debian 6 Squeeze, this issue has been fixed in xdelta3 version 0y.dfsg-1+deb6u1. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE

[SECURITY] [DLA 420-1] libmatroska security update

nformation leak. For Debian 6 Squeeze, this issue has been fixed in libmatroska version 0.8.1-1.1+deb6u1. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 428-1] websvn security update

been fixed in websvn version 2.3.1-1+deb6u2. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWzYQ2AAoJEB6VPifUMR5YuYQQAMBv

[SECURITY] [DLA 429-1] pixman security update

pixman version 0.16.4-1+deb6u2. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJWzhtTAAoJEB6VPifUMR5YxpgP/i/r

[SECURITY] [DLA 430-1] libfcgi security update

Debian 6 Squeeze, this issue has been fixed in libfcgi version 2.4.0-8+deb6u1. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE---

[SECURITY] [DLA 431-1] libfcgi-perl security update

web server protocol for Perl. For Debian 6 Squeeze, this issue has been fixed in libfcgi-perl version 0.71-1+squeeze1+deb6u1. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE---

[SECURITY] [DLA 464-1] libav security update

n 7 Wheezy, this issue has been fixed in libav version 6:0.8.17-2+deb7u1. We recommend that you upgrade your libav packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 469-1] libgwenhywfar security update

Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJXNL9YAAoJEB6VPifUMR5YhxUQAIAvMm2ZTx5g3e90wndWpO4Q BLs4ZGNj/hTvWEeKbm8uu9KMdt/tpTOX8WWr7md

[SECURITY] [DLA 470-1] libksba security update

d that you upgrade your libksba packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJXNfa4AAoJEB6VPifUMR

[SECURITY] [DLA 474-1] dosfstools security update

checking MS-DOS FAT filesystems. For Debian 7 "Wheezy", this issue has been fixed in dosfstools version 3.0.13-1+deb7u1. We recommend that you upgrade your dosfstools packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...

[SECURITY] [DLA 482-1] libgd2 security update

attackers to cause a denial of service via a crafted imagefilltoborder call. For Debian 7 "Wheezy", this issue has been fixed in libgd2 version 2.0.36~rc1~dfsg-6.1+deb7u3. We recommend that you upgrade your libgd2 packages. Regards, - -- ,''`. : :' : Chris

[SECURITY] [DLA 512-1] mantis security update

this issue has been fixed in mantis version 1.2.18-1+deb7u1. We recommend that you upgrade your mantis packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 513-1] nspr security update

this issue has been fixed in nspr version 2:4.9.2-1+deb7u4. We recommend that you upgrade your nspr packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 515-1] libav security update

lead to crash or possibly execute arbitrary code. For Debian 7 "Wheezy", this issue has been fixed in libav version 6:0.8.17-2+deb7u2. We recommend that you upgrade your libav packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...

[SECURITY] [DLA 520-1] horizon security update

uot;, this issue has been fixed in horizon version 2012.1.1-10+deb7u1. We recommend that you upgrade your horizon packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 524-1] squidguard security update

heezy", this issue has been fixed in squidguard version 1.5-1+deb7u1. We recommend that you upgrade your squidguard packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 525-1] gimp security update

. For Debian 7 "Wheezy", this issue has been fixed in gimp version 2.8.2-2+deb7u2. We recommend that you upgrade your gimp packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 532-1] movabletype-opensource security update

"Wheezy", this issue has been fixed in movabletype-opensource version 5.1.4+dfsg-4+deb7u4. We recommend that you upgrade your movabletype-opensource packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.c

[SECURITY] [DLA 541-1] libvirt security update

t version 0.9.12.3-1+deb7u2. We recommend that you upgrade your libvirt packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJXdjKpAAoJ

[SECURITY] [DLA 574-1] graphicsmagick security update

heezy", this issue has been fixed in graphicsmagick version 1.3.16-1.1+deb7u3. We recommend that you upgrade your graphicsmagick packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP

[SECURITY] [DLA 548-1] drupal7 security update

ue has been fixed in drupal7 version 7.14-2+deb7u13. We recommend that you upgrade your drupal7 packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE--

[SECURITY] [DLA 550-1] drupal7 security update

ou upgrade your drupal7 packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJXiJSmAAoJEB6VPifUMR5YYX0QALTJoNhWNN9Y2q5Jx+xU

[SECURITY] [DLA 557-1] dietlibc security update

Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- Version: GnuPG v1 iQIcBAEBCAAGBQJXlmWeAAoJEB6VPifUMR5YxPQQAKAQ0pxNzvw3/iJ5odQ5Etfl ZqMpFjoCeWbKelfi1M/vXYmE0h9VNyt8dKMlMK

[SECURITY] [DLA 577-1] redis security update

7 "Wheezy", this issue has been fixed in redis version 2:2.4.14-1+deb7u1. We recommend that you upgrade your redis packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SI

[SECURITY] [DLA 596-1] extplorer security update

packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIcBAEBCAAGBQJXskJOAAoJEB6VPifUMR5Y7FsP/Ap8+dtoh5Cu6V4kzEJytxl5 Uh5/vS5wU/IeP6sl7qSlfcWQ

[SECURITY] [DLA 598-1] suckless-tools security update

"Wheezy", this issue has been fixed in suckless-tools version 38-2+deb7u1. We recommend that you upgrade your suckless-tools packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.

[SECURITY] [DLA 599-1] cracklib2 security update

checker library. For Debian 7 "Wheezy", this issue has been fixed in cracklib2 version 2.8.19-3+deb7u1. We recommend that you upgrade your cracklib2 packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.c

[SECURITY] [DLA 608-1] mailman security update

obtain a user's password. For Debian 7 "Wheezy", this issue has been fixed in mailman version 1:2.1.15-1+deb7u2. We recommend that you upgrade your mailman packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chr

[SECURITY] [DLA 611-1] jsch security update

issue has been fixed in jsch version 0.1.42-2+deb7u1. We recommend that you upgrade your jsch packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIcBAEBCA

[SECURITY] [DLA 620-1] libphp-adodb security update

uot;, this issue has been fixed in libphp-adodb version 5.15-1+deb7u1. We recommend that you upgrade your libphp-adodb packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 631-1] unadf security update

Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIcBAEBCAAGBQJX4fKRAAoJEB6VPifUMR5YNCcP/R+x87r+CX25vJC1LNRvdLqX PtIxbHI1Xrxzso9Dg3tMRdwILmn2aBHVYIwDJAr6wBocGJtHgzAGJAczYvd4U6qg lIQ4HmOwydhTz

[SECURITY] [DLA 634-1] dropbear security update

message formatting. - CVE-2016-7407: Overflows when parsing OpenSSH's ASN.1 key format. For Debian 7 "Wheezy", this issue has been fixed in dropbear version 2012.55-1.3+deb7u1. We recommend that you upgrade your dropbear packages. Regards, - -- ,''`.

[SECURITY] [DLA 635-1] dwarfutils security update

Debian 7 "Wheezy", this issue has been fixed in dwarfutils version 20120410-2+deb7u1. We recommend that you upgrade your dwarfutils packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 638-1] policycoreutils security update

quired for the basic operation of an SELinux-based system. For Debian 7 "Wheezy", this issue has been fixed in policycoreutils version 2.1.10-9+deb7u1. We recommend that you upgrade your policycoreutils packages. Regards, - -- ,''`. : :' : Chris Lam

[SECURITY] [DLA DLA-647-1] freeimage security update

e packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIcBAEBCAAGBQJX9jCeAAoJEB6VPifUMR5YU/4P/Agqeyk/yW2fqzobY96fD4CT bjaeEVtILofEuUWp6l3sTyfB4XAAuV04v/5e10scWXwiyc0bxAG24S1y1Q

[SECURITY] [DLA DLA-649-1] python-django security update

o packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIcBAEBCAAGBQJX9sCkAAoJEB6VPifUMR5Y/NkP/3pn6GIrzDur8U8jMGEpsrCL Rx0iCzsPte80mRW7c5FQhqYtEFq5LKikjI

[SECURITY] [DLA 654-1] libxfixes security update

ta from server, getting out of sync. For Debian 7 "Wheezy", this issue has been fixed in libxfixes version 1:5.0-4+deb7u2. We recommend that you upgrade your libxfixes packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debia

[SECURITY] [DLA 662-1] quagga security update

size specified when receiving mixed up two constants that have different values. For Debian 7 "Wheezy", this issue has been fixed in quagga version 0.99.22.4-1+wheezy3+deb7u1. We recommend that you upgrade your quagga packages. Regards, - -- ,''`. :

[SECURITY] [DLA 688-1] cairo security update

generate invalid pointers from a _cairo_image_surface in write_png. For Debian 7 "Wheezy", this issue has been fixed in cairo version 1.12.2-3+deb7u1. We recommend that you upgrade your cairo packages. Regards, - -- ,''`. : :' : Chris Lamb `.

[SECURITY] [DLA 697-1] bsdiff security update

this issue has been fixed in bsdiff version 4.3-14+deb7u1. We recommend that you upgrade your bsdiff packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIcBAEBC

[SECURITY] [DLA 705-1] python-imaging security update

7 "Wheezy", this issue has been fixed in python-imaging version 1.1.7-4+deb7u3. We recommend that you upgrade your python-imaging packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 713-1] sniffit security update

specially-crafted configuration file to provide a root shell. For Debian 7 "Wheezy", this issue has been fixed in sniffit version 0.3.7.beta-16.1+deb7u1. We recommend that you upgrade your sniffit packages. Regards, - -- ,''`. : :' : Chris Lamb `

[SECURITY] [DLA 723-1] libsoap-lite-perl security update

/wiki/SOAP Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlg4uTQACgkQHpU+J9Qx HliUtxAAt6d/d7Brm33ckLHDvvuefkP49cu94ombualj/pkHrdg7dgRiUcxvhMIO pqomm/j

[SECURITY] [DLA 724-1] mcabber security update

ue has been fixed in mcabber version 0.10.1-3+deb7u1. We recommend that you upgrade your mcabber packages. [0] https://gultsch.de/gajim_roster_push_and_message_interception.html Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / ch

[SECURITY] [DLA 733-1] openafs security update

memory, OpenAFS directory objects are likely to contain 'dead' directory entry information. For Debian 7 "Wheezy", this issue has been fixed in openafs version 1.6.1-3+deb7u7. We recommend that you upgrade your openafs packages. Regards, - -- ,''

[SECURITY] [DLA 734-1] mapserver security update

heezy", this issue has been fixed in mapserver version 6.0.1-3.2+deb7u3. We recommend that you upgrade your mapserver packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 737-1] roundcube security update

dcube packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlhJrckACgkQHpU+J9Qx Hlgkeg/7BR8+OXVKZhJwepA6HKVtZ7csUeQ+tRKXM7m9MmMJiMXbS8LCpAs7d2QG np+qWomusv24j/y3ndR

[SECURITY] [DLA 738-1] spip security update

attackers to inject arbitrary web script or HTML via the "rac" parameter. For Debian 7 "Wheezy", this issue has been fixed in spip version 2.1.17-1+deb7u7. We recommend that you upgrade your spip packages. Regards, - -- ,''`. : :' : Chris Lam

[SECURITY] [DLA 740-1] libgsf security update

packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlhNoJYACgkQHpU+J9Qx HlijtQ//bolNntRESdaKd1VDlyo1MG4gJ+V/gSatpS7h/kMFeBItKCT9py2JlVIr K8

[SECURITY] [DLA 773-1] python-crypto security update

kages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlho5McACgkQHpU+J9Qx HlguvBAAxvwxrC17S+UgmDkK51Ylm5i2W1suwwEvdl0uu7O+A09ok/WxPMuUWb4

[SECURITY] [DLA 777-1] libvncserver security update

e recommend that you upgrade your libvncserver packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlhryEo

[SECURITY] [DLA 773-2] python-crypto regression update

to version 2.6-4+deb7u5. We recommend that you upgrade your python-crypto packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxH

[SECURITY] [DLA 773-3] python-crypto regression update

this issue has been fixed in python-crypto version 2.6-4+deb7u6. We recommend that you upgrade your python-crypto packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 778-1] pcsc-lite security update

interface ("PC/SC"). For Debian 7 "Wheezy", this issue has been fixed in pcsc-lite version 1.8.4-1+deb7u2. We recommend that you upgrade your pcsc-lite packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / ch

[SECURITY] [DLA 773-4] python-crypto update

E (2013-7459). Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlh0q2UACgkQHpU+J9Qx HlgAphAAnfkqGn6fPk4b

[SECURITY] [DLA 795-1] hesiod security update

ommend that you upgrade your hesiod packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAliGiiQACgkQHpU+

[SECURITY] [DLA 810-1] libarchive security update

Debian 7 "Wheezy", this issue has been fixed in libarchive version 3.0.4-3+wheezy5+deb7u1. We recommend that you upgrade your libarchive packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 817-1] libphp-phpmailer security update

Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAliYOsMACgkQHpU+J9Qx HlhV4BAAoiPxzEcuo/886pJcR8ogmVvVCK5CBviEne259wRsSG7N2cZFuY8oYhY/ MhV+24YM0eNkclxk7KlHAS

[SECURITY] [DLA 826-1] wireshark security update

packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlinf48ACgkQHpU+J9Qx HlhQAw/5AeO/Gv0f0rqwTr60

[SECURITY] [DLA 848-1] freetype security update

Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAli+oVcACgkQHpU+J9Qx HlgVGw//XFaJWyDAd38TXQytLzkMN1r5zI

[SECURITY] [DLA 851-1] wget security update

attackers to inject arbitrary HTTP headers via CRLF sequences in the host subcomponent of a URL. For Debian 7 "Wheezy", this issue has been fixed in wget version 1.13.4-3+deb7u4. We recommend that you upgrade your wget packages. Regards, - -- ,''`. :

[SECURITY] [DLA 863-1] deluge security update

Bittorrent client. For Debian 7 "Wheezy", this issue has been fixed in deluge version 1.3.3-2+nmu1+deb7u1. We recommend that you upgrade your deluge packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.c

[SECURITY] [DLA 864-1] jhead security update

attackers were able to execute arbitrary code via crafted image data. For Debian 7 "Wheezy", this issue has been fixed in jhead version 1:2.95-1+deb7u1. We recommend that you upgrade your jhead packages. Regards, - -- ,''`. : :' : Chris Lamb `.

[SECURITY] [DLA 865-1] suricata security update

d that you upgrade your suricata packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxH

[SECURITY] [DLA 871-1] python3.2 security update

grade your python3.2 packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAljWLm0ACgkQHpU+J9Qx Hljq2g/+L3+AjXMvIMi1n3TaPsgDOKoD+y

[SECURITY] [DLA 873-1] apt-cacher security update

heezy", this issue has been fixed in apt-cacher version 1.7.6+deb7u1. We recommend that you upgrade your apt-cacher packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 876-1] eject security update

setuid/setgid. For Debian 7 "Wheezy", this issue has been fixed in eject version 2.1.5+deb1+cvs20081104-13+deb7u1. We recommend that you upgrade your eject packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-la

[SECURITY] [DLA 882-1] tryton-server security update

uot;, this issue has been fixed in tryton-server version 2.2.4-1+deb7u4. We recommend that you upgrade your tryton-server packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 883-1] curl security update

end that you upgrade your curl packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAljjfqkACgkQHpU+J9Qx Hlj4QQ/+IwOrFvQYHiP

[SECURITY] [DLA 884-1] collectd security update

5.1.0-3+deb7u3. We recommend that you upgrade your collectd packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgF

[SECURITY] [DLA 885-1] python-django security update

is issue has been fixed in python-django version 1.4.22-1+deb7u3. We recommend that you upgrade your python-django packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIz

[SECURITY] [DLA 890-1] ming security update

behind the bounds of a statically allocated array of structs of type SWF_GRADIENTRECORD. For Debian 7 "Wheezy", this issue has been fixed in ming version 1:0.4.4-1.1+deb7u2. We recommend that you upgrade your ming packages. Regards, - -- ,''`. : :' :

[SECURITY] [DLA 892-1] libnl3 security update

Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAljru3cACgkQHpU+J9Qx HliUxA/9GbQaKd86uVcwkq9zvkj2ZawG0b

[SECURITY] [DLA 891-1] libnl security update

eb7u1. We recommend that you upgrade your libnl packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAljrut4ACgkQ

[SECURITY] [DLA 930-1] libxstream-java security update

packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk `- -BEGIN PGP SIGNATURE- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAlkG+IoACgkQHpU+J9Qx HlhLQw/+Kyjbn3LE8EdvPGrn+ayJ3Z6LWs

[SECURITY] [DLA 935-1] lxterminal security update

environment. This was caused by an insecure use of temporary files for a socket file. For Debian 7 "Wheezy", this issue has been fixed in lxterminal version 0.1.11-4+deb7u1. We recommend that you upgrade your lxterminal packages. Regards, - -- ,''`. :

[SECURITY] [DLA 940-1] sane-backends security update

sensitive memory information via a crafted SANE_NET_CONTROL_OPTION packet. For Debian 7 "Wheezy", this issue has been fixed in sane-backends version 1.0.22-7.4+deb7u1. We recommend that you upgrade your sane-backends packages. Regards, - -- ,''`. :

[SECURITY] [DLA 943-1] deluge security update

heezy", this issue has been fixed in deluge version 1.3.3-2+nmu1+deb7u2. We recommend that you upgrade your deluge packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 949-1] miniupnpc security update

denial of service attack. For Debian 7 "Wheezy", this issue has been fixed in miniupnpc version 1.5-2+deb7u2. We recommend that you upgrade your miniupnpc packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-la

[SECURITY] [DLA 959-1] libical security update

attackers could cause a denial of service and possibly read heap memory via a specially crafted .ICS file. For Debian 7 "Wheezy", this issue has been fixed in libical version 0.48-2+deb7u1. We recommend that you upgrade your libical packages. Regards, - -- ,''`. :

[SECURITY] [DLA 974-1] picocom security update

heezy", this issue has been fixed in picocom version 1.7-1+deb7u1. We recommend that you upgrade your picocom packages. Regards, - -- ,''`. : :' : Chris Lamb `. `'` la...@debian.org / chris-lamb.co.uk

[SECURITY] [DLA 972-1] openldap security update

search the directory could crash slapd by issuing a search requesting a "Paged Results" value set to zero. For Debian 7 "Wheezy", this issue has been fixed in openldap version 2.4.31-2+deb7u3. We recommend that you upgrade your openldap packages. Regards, - -- ,&#

  1   2   3   4   5   >