Package: libspring-security-2.0-java
Version: 2.0.7.RELEASE-3+deb8u1
CVE ID : CVE-2019-3795
A vulnerability was discovered in libspring-security-2.0-java, a modular
Java/J2EE application security framework, when using
SecureRandomFactoryBean#setSeed to configure a
Package: cups-filters
Version: 1.0.61-5+deb8u4
Debian Bug : 926576 928936 928952
The update for ghostscript released as DLA-1792-1 uncovered an issue in
cups-filters which was using the undocumented Ghostscript internal
"pdfdict" now hidden in the ghostscript update. Updated
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: dhcpcd5
Version: 6.0.5-2+deb8u1
CVE ID : CVE-2019-11579
Debian Bug : #928104
It was discovered that there was a read overflow vulnerability in the
dhcpcd5 network management protocol client.
For Debian 8
Package: ghostscript
Version: 9.26a~dfsg-0+deb8u3
CVE ID : CVE-2019-3839
A vulnerability was discovered in Ghostscript, the GPL PostScript/PDF
interpreter, which may result in denial of service or the execution of
arbitrary code if a malformed Postscript file is processed
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: faad2
Version: 2.7-8+deb8u2
CVE ID : CVE-2018-20194 CVE-2018-20197 CVE-2018-20198 CVE-2018-20362
Multiple vulnerabilities have been found in faad2, the Freeware Advanced Audio
Coder:
CVE-2018-20194
CVE-2018-20197