[SECURITY] [DLA 1794-1] libspring-security-2.0-java security update

Package: libspring-security-2.0-java Version: 2.0.7.RELEASE-3+deb8u1 CVE ID : CVE-2019-3795 A vulnerability was discovered in libspring-security-2.0-java, a modular Java/J2EE application security framework, when using SecureRandomFactoryBean#setSeed to configure a

[SECURITY] [DLA 1792-2] cups-filters regression update

Package: cups-filters Version: 1.0.61-5+deb8u4 Debian Bug : 926576 928936 928952 The update for ghostscript released as DLA-1792-1 uncovered an issue in cups-filters which was using the undocumented Ghostscript internal "pdfdict" now hidden in the ghostscript update. Updated

[SECURITY] [DLA 1793-1] dhcpcd5 security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: dhcpcd5 Version: 6.0.5-2+deb8u1 CVE ID : CVE-2019-11579 Debian Bug : #928104 It was discovered that there was a read overflow vulnerability in the dhcpcd5 network management protocol client. For Debian 8

[SECURITY] [DLA 1792-1] ghostscript security update

Package: ghostscript Version: 9.26a~dfsg-0+deb8u3 CVE ID : CVE-2019-3839 A vulnerability was discovered in Ghostscript, the GPL PostScript/PDF interpreter, which may result in denial of service or the execution of arbitrary code if a malformed Postscript file is processed

[SECURITY] [DLA 1791-1] faad2 security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: faad2 Version: 2.7-8+deb8u2 CVE ID : CVE-2018-20194 CVE-2018-20197 CVE-2018-20198 CVE-2018-20362 Multiple vulnerabilities have been found in faad2, the Freeware Advanced Audio Coder: CVE-2018-20194 CVE-2018-20197