[SECURITY] [DLA 2175-1] php-horde-trean security update

Package: php-horde-trean Version: 1.1.1-2+deb8u1 CVE ID : CVE-2020-8865 Debian Bug : 955019 A directory traversal vulnerability resulting from insufficient input sanitization was discovered in the Horde Application Framework. An authenticated remote attacker could

[SECURITY] [DLA 2174-1] php-horde-data security update

Package: php-horde-data Version: 2.1.0-5+deb8u1 CVE ID : CVE-2020-8518 Debian Bug : 951537 A remote code execution vulnerability was discovered in the Horde Application Framework. An authenticated remote attacker could use this flaw to cause execution of uploaded CSV

[SECURITY] [DLA 2173-1] graphicsmagick security update

Package: graphicsmagick Version: 1.3.20-3+deb8u10 CVE ID : CVE-2020-10938 A vulnerability was discovered in graphicsmagick, a collection of image processing tools, that results in a heap overflow in 32-bit applications because of a signed overflow on range check in the

[SECURITY] [DLA 2172-1] thunderbird security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: thunderbird Version: 1:68.7.0-1~deb8u1 CVE ID : CVE-2020-6819 CVE-2020-6820 CVE-2020-6821 CVE-2020-6822 CVE-2020-6825 Multiple security issues have been found in Thunderbird which could result in