-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: liblivemedia
Version: 2014.01.13-1+deb8u3
CVE ID : CVE-2019-9215
Debian Bug : 924655
It was discovered that liblivemedia, the LIVE555 RTSP server library,
is vulnerable to an invalid memory access when
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: libjpeg-turbo
Version: 1:1.3.1-12+deb8u2
CVE ID : CVE-2018-14498
Debian Bug : #924678
It was discovered that there was a denial of service vulnerability in
the libjpeg-turbo CPU-optimised JPEG image library. A
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: sqlalchemy
Version: 0.9.8+dfsg-0.1+deb8u1
CVE ID : CVE-2019-7164 CVE-2019-7548
Debian Bug : 922669
Two vulnerabilities were discovered in SQLALchemy, a Python SQL
Toolkit and Object Relational Mapper.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: rdflib
Version: 4.1.2-3+deb8u1
CVE ID : CVE-2019-7653
Debian Bug : #921751
The CLI tools in python-rdflib-tools can load python modules
found in the current directory. This happens because "python -m"
appends
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: ikiwiki
Version: 3.20141016.4+deb8u1
CVE ID : CVE-2019-9187
The ikiwiki maintainers discovered that the aggregate plugin did not use
LWPx::ParanoidAgent. On sites where the aggregate plugin is enabled, authorized