Accepted freedink-dfarc 3.12-1+deb8u1 (source amd64) into oldstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 24 Feb 2019 12:35:35 +0100 Source: freedink-dfarc Binary: freedink-dfarc freedink-dfarc-dbg Architecture: source amd64 Version: 3.12-1+deb8u1 Distribution: jessie-security Urgency: high Maintainer: Debian Games Team

[SECURITY] [DLA 1686-1] freedink-dfarc security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: freedink-dfarc Version: 3.12-1+deb8u1 CVE ID : CVE-2018-0496 Sylvain Beucler and Dan Walma discovered several directory traversal issues in DFArc, a frontend and extensions manager for the Dink Smallwood game,

Accepted sox 14.4.1-5+deb8u1 (source amd64) into oldstable

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Sun, 24 Feb 2019 18:04:09 +0200 Source: sox Binary: sox libsox2 libsox-fmt-base libsox-fmt-alsa libsox-fmt-ao libsox-fmt-mp3 libsox-fmt-oss libsox-fmt-pulse libsox-fmt-all libsox-dev Architecture: source amd64 Version:

waagent 2.2.18-3~deb8u1

Hello Bastian, I noticed your upload of waagent 2.2.18-3~deb8u1 to jessie-security but no DLA announcement was sent. Please claim an DLA id and follow our recommendations. [1] If there are any problems, please let us know. Regards, Markus [1] https://wiki.debian.org/LTS/Development

Re: Bug#914632: RFC: proposed fix for CVE-2018-19518 in uw-imap

söndag 30 december 2018 kl. 09:38:57 CET skrev Salvatore Bonaccorso: > There is an alternative approach wich was raised by Magnus in the > respective bug: https://bugs.debian.org/914632#12 (and see followup > from Moritz). So, is it OK to upload this (assuming there's no code out there that

[SECURITY] [DLA 1687-1] sox security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: sox Version: 14.4.1-5+deb8u1 CVE ID : CVE-2014-8145 Debian Bug : 773720 Mike Salvatore discovered that the fixes for these heap-based buffer overflows had not been properly applied in the Debian package. For