-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: libquicktime
Version: 2:1.2.4-3+deb7u1
CVE ID : CVE-2016-2399
Debian Bug : 855099
Marco 'nemux' Romano discovered that an integer overflow in the
quicktime_read_pascal function in libquicktime 1.2.4 and earlier
Package: apache2
Version: 2.2.22-13+deb7u8
CVE ID : CVE-2016-8743
This upload fixes a security vulnerability in the header parsing code.
David Dennerline, of IBM Security's X-Force Researchers, and Régis
Leroy discovered problems in the way Apache handled a broad pattern
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: libplist
Version: 1.8-1+deb7u2
CVE ID : CVE-2017-5834 CVE-2017-5835
Debian Bug : 854000
Several vulnerabilities were discovered in libplist, a library for
reading and writing the Apple binary and XML property