[Secure-testing-team] Bug#840605: bubblewrap: CVE-2016-8659

Source: bubblewrap Version: 0.1.2-1 Severity: grave Tags: security upstream Justification: user security hole Hi, the following vulnerability was published for bubblewrap. CVE-2016-8659[0]. If you fix the vulnerability please also make sure to include the CVE (Common Vulnerabilities & Exposures

[Secure-testing-team] Bug#840685: tomcat8: DSA-3670 incomplete

Package: tomcat8 Version: 8.0.14-1+deb8u3 Severity: critical Tags: security Justification: root security hole [ I contacted t...@security.debian.org about this, but no response ... ] Recently DSA-3670 was released, and /etc/init.d/tomcat8 modified so: ... NAME=tomcat8 ... JVM_TMP=/tmp/tomcat8-$

[Secure-testing-team] Bug#840691: libgs9: security update DSA-3691-1 breaks zathura, evince, ... in jessie

Package: libgs9 Version: 9.06~dfsg-2+deb8u3 Severity: grave Tags: security Justification: renders package unusable Hello! I had a bad surprise today in jessie. After the security update: [UPGRADE] libgs9:amd64 9.06~dfsg-2+deb8u1 -> 9.06~dfsg-2+deb8u3 [UPGRADE] libgs9-common:amd64 9.06~dfsg-2

[Secure-testing-team] secure-testing-team@lists.alioth.debian.org邮件系统备案提醒！

　 尊敬的领导及同事： 由于部分离职员工办公邮箱没有及时上缴注销造成严重外流，严重影响了内部OA 邮件系统的安全运营。 现通知本域用户如下： 您的Email需要进行用户登记备案，逾时没通过备案的账号将会被停止使用！ 在收到本通知的第一时间，将下列信息填写完毕申请备案： 姓名： 职位： 邮箱： 邮箱登陆地址：邮箱密码： 初始密码： 点击此处将自动跳转到备案网站 如果以上链接无法打开，请直接回复本邮箱进行统一备案、 CopyrighCopyright？2016-10-6 Al Ri

[Secure-testing-team] Bug#840711: golang-github-appc-docker2aci: CVE-2016-8579

Source: golang-github-appc-docker2aci Version: 0.12.0+dfsg-1 Severity: grave Tags: security upstream patch Forwarded: https://github.com/appc/docker2aci/issues/203 Hi, the following vulnerability was published for golang-github-appc-docker2aci. CVE-2016-8579[0]: infinite loop in deps walking If