[SECURITY] [DLA 972-1] openldap security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: openldap Version: 2.4.31-2+deb7u3 CVE ID : CVE-2017-9287 Debian Bug : #863563 It was discovered that there was a double-free vulnerability in the "openldap" LDAP server. A user with access to search the director

[SECURITY] [DLA 974-1] picocom security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: picocom Version: 1.7-1+deb7u1 CVE ID : CVE-2015-9059 Debian Bug : #863671 It was discovered that there was a command injection vulnerability in picocom, a dumb-terminal emulation program. For Debian 7 "Wheezy",

[SECURITY] [DLA 973-1] strongswan security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: strongswan Version: 4.5.2-1.5+deb7u9 CVE ID : CVE-2017-9022 CVE-2017-9023 Two denial of service vulnerabilities were identified in strongSwan, an IKE/IPsec suite, using Google's OSS-Fuzz fuzzing project. CVE-2017-90

[SECURITY] [DLA 964-1] xen security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: xen Version: 4.1.6.lts1-8 CVE ID : CVE-2016-9932 CVE-2017-7995 CVE-2017-8903 CVE-2017-8904 CVE-2017-8905 Multiple vulnerabilities have been discovered in the Xen hypervisor. The Common Vulnerabilit