[SECURITY] [DLA 547-2] graphicsmagick regression update

Package: graphicsmagick Version: 1.3.16-1.1+deb7u6 CVE ID : CVE-2016-5240 Debian Bug : N/A The fix for CVE-2016-5240 was improperly applied which resulted in GraphicsMagick crashing instead of entering an infinite loop with the given proof of concept. Furthermore, the

[SECURITY] [DLA 878-1] libytnef security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Package: libytnef Version: 1.5-4+deb7u1 CVE ID : CVE-2017-6298 CVE-2017-6299 CVE-2017-6300 CVE-2017-6301 CVE-2017-6302 CVE-2017-6303 CVE-2017-6304 CVE-2017-6305 CVE-2017-6801 CVE-2017-6802

[SECURITY] [DLA 877-1] tiff security update

Package: tiff Version: 4.0.2-6+deb7u11 CVE ID : CVE-2016-10266 CVE-2016-10267 CVE-2016-10268 CVE-2016-10269 libtiff is vulnerable to multiple buffer overflows and integer overflows that can lead to application crashes (denial of service) or worse. CVE-2016-10266

[SECURITY] [DLA 876-1] eject security update

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Package: eject Version: 2.1.5+deb1+cvs20081104-13+deb7u1 CVE ID : CVE-2017-6964 Debian Bug : #858872 Ilja Van Sprundel discovered that eject (a tool to eject CD/DVD drives) did not properly handle errors returned from