Package: openconnect
Version: 6.00-2+deb8u1
CVE ID : CVE-2019-16239
Debian Bug : 940871
A vulnerability was discovered by Lukas Kupczyk of the Advanced Research
Team at CrowdStrike Intelligence in OpenConnect, an open client for
Cisco AnyConnect, Pulse, GlobalProtect V
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: libapreq2
Version: 2.13-4+deb8u1
CVE ID : CVE-2019-12412
Debian Bug : #939937
It was discovered that there was a remotely-exploitable null pointer
dereference in libapreq2, a library for manipulating HTTP request