-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: fontconfig
Version: 2.9.0-7.1+deb7u1
CVE ID : CVE-2016-5384
Debian Bug : 833570
A possible double free vulnerability was found in fontconfig. The
problem was due to insufficient validation when parsing the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: libreoffice
Version: 3.5.4+dfsg2-0+deb7u8
CVE ID : CVE-2016-1513
An OpenDocument Presentation .ODP or Presentation Template .OTP file
can contain invalid presentation elements that lead to memory
corruption when
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: python-django
Version: 1.4.22-1
The release team recently approved rebasing jessie on latest
python-django 1.7.x (see #807654). For similiar reasons, it makes sense
to rebase wheezy on latest 1.4.x, especially since 1.4.x