[SECURITY] [DLA 844-1] libquicktime security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: libquicktime Version: 2:1.2.4-3+deb7u1 CVE ID : CVE-2016-2399 Debian Bug : 855099 Marco 'nemux' Romano discovered that an integer overflow in the quicktime_read_pascal function in libquicktime 1.2.4 and earlier

[SECURITY] [DLA 841-1] apache2 security update

Package: apache2 Version: 2.2.22-13+deb7u8 CVE ID : CVE-2016-8743 This upload fixes a security vulnerability in the header parsing code. David Dennerline, of IBM Security's X-Force Researchers, and Régis Leroy discovered problems in the way Apache handled a broad pattern

[SECURITY] [DLA 840-1] libplist security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: libplist Version: 1.8-1+deb7u2 CVE ID : CVE-2017-5834 CVE-2017-5835 Debian Bug : 854000 Several vulnerabilities were discovered in libplist, a library for reading and writing the Apple binary and XML property