Package: tomcat7
Version: 7.0.28-4+deb7u16
CVE ID : CVE-2017-12617
A remote code execution vulnerability has been discovered in tomcat7.
When HTTP PUT was enabled (e.g., via setting the readonly initialization
parameter of the Default servlet to false) it was possible to
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: libpam4j
Version: 1.4-2+deb7u1
CVE ID : CVE-2017-12197
Debian Bug : 879001
It was discovered that libpam4j, a Java binding for libpam.so, does
not call pam_acct_mgmt(). As a consequence, the PAM account is not
pr
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: mupdf
Version: 0.9-2+deb7u4
CVE ID : CVE-2017-14687 CVE-2017-15587
Debian Bug : 877379 879055
Two security issues were discovered in mupdf, a lightweight PDF viewer.
CVE-2017-14687
MuPDF allows attackers to