-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: c-ares
Version: 1.9.1-3+deb7u2
CVE ID : CVE-2017-1000381
CVE-2017-1000381
The c-ares function ares_parse_naptr_reply(), which is used for
parsing NAPTR responses, could be triggered to read memory
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: openvpn
Version: 2.2.1-8+deb7u5
CVE ID : CVE-2017-7520
Debian Bug : #865480
It was discovered that there were multiple out-of-bounds memory read
vulnerabilities in openvpn, a popular virtual private network