[Secure-testing-team] Bug#829661: ceph: CVE-2016-5009: Ceph monitor crash: mon_command crashes ceph monitors on receiving empty prefix

Source: ceph Version: 0.80.7-2 Severity: important Tags: security upstream Hi Ceph maintainers, the following vulnerability was published for ceph. CVE-2016-5009[0]: Ceph monitor crash: mon_command crashes ceph monitors on receiving empty prefix If you fix the vulnerability please also make

[Secure-testing-team] Bug#829694: libgd2: CVE-2016-6132: read out-of-bands was found in the parsing of TGA files

Package: libgd2 Version: 2.2.1-1 Severity: important Tags: security upstream Forwarded: https://github.com/libgd/libgd/issues/247 Hi, the following vulnerability was published for libgd2. CVE-2016-6132[0]: read out-of-bands was found in the parsing of TGA files If you fix the vulnerability

[Secure-testing-team] Bug#829730: xchat-gnome: CVE-2013-7449

Source: xchat-gnome Version: 1:0.30.0~git20110821.e2a400-0.2 Severity: important Tags: security upstream Hi, the following vulnerability was published for xchat-gnome. CVE-2013-7449[0]: | The ssl_do_connect function in common/server.c in HexChat before | 2.10.2, XChat, and XChat-GNOME does not

[Secure-testing-team] Bug#829718: libxml2: CVE-2016-4448

Source: libxml2 Version: 2.8.0+dfsg1-7 Severity: important Tags: security upstream patch fixed-upstream Hi, the following vulnerability was published for libxml2. CVE-2016-4448[0]: | Format string vulnerability in libxml2 before 2.9.4 allows attackers | to have unspecified impact via format