Package: graphicsmagick
Version: 1.3.16-1.1+deb7u6
CVE ID : CVE-2016-5240
Debian Bug : N/A
The fix for CVE-2016-5240 was improperly applied which resulted in
GraphicsMagick crashing instead of entering an infinite loop with the
given proof of concept.
Furthermore, the
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
Package: libytnef
Version: 1.5-4+deb7u1
CVE ID : CVE-2017-6298 CVE-2017-6299 CVE-2017-6300 CVE-2017-6301
CVE-2017-6302 CVE-2017-6303 CVE-2017-6304 CVE-2017-6305
CVE-2017-6801 CVE-2017-6802
Package: tiff
Version: 4.0.2-6+deb7u11
CVE ID : CVE-2016-10266 CVE-2016-10267 CVE-2016-10268 CVE-2016-10269
libtiff is vulnerable to multiple buffer overflows and integer overflows
that can lead to application crashes (denial of service) or worse.
CVE-2016-10266
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Package: eject
Version: 2.1.5+deb1+cvs20081104-13+deb7u1
CVE ID : CVE-2017-6964
Debian Bug : #858872
Ilja Van Sprundel discovered that eject (a tool to eject CD/DVD drives) did not
properly handle errors returned from