[Secure-testing-team] Bug#868956: libmspack: CVE-2017-11423

Source: libmspack Version: 0.5-1 Severity: important Tags: security upstream Forwarded: https://bugzilla.clamav.net/show_bug.cgi?id=11873 Hi, the following vulnerability was published for libmspack. CVE-2017-11423[0]: | The cabd_read_string function in mspack/cabd.c in libmspack 0.5alpha, | as

[Secure-testing-team] Bug#868950: imagemagick: CVE-2017-11446

Source: imagemagick Version: 8:6.8.9.9-5 Severity: important Tags: patch upstream security Forwarded: https://github.com/ImageMagick/ImageMagick/issues/537 Hi, the following vulnerability was published for imagemagick. CVE-2017-11446[0]: | The ReadPESImage function in coders\pes.c in

[Secure-testing-team] Bug#868988: phamm: CVE-2017-0378 reflected XSS in phamm

Source: phamm Severity: important Tags: upstream security While looking through codesearch.debian.net I noticed that phamm's views/helpers.php uses $_SERVER['PHP_SELF'] in a way that is vulnerable to reflected XSS attacks. To reproduce the problem, load a URL like this in Firefox:

[Secure-testing-team] restaurant à céder 75016

  [ Voir la version en ligne ]( http://r.contact-redressementjudiciaire.com/7q7c4tpcf5hrf.html )     Nous vous prions de trouver annexé à la présente une recherche de candidat repreneur dans le cadre d'une procédure de redressement judiciaire concernant la cession d'un fonds de commerce