secure-testing-team  

Messages by Thread

• [Secure-testing-team] Bug#859891: yaml-cpp: CVE-2017-5950 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859854: qemu: CVE-2017-7377 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859821: CVE-2017-5923 CVE-2017-5924 CVE-2016-10210 CVE-2016-10211 Moritz Muehlenhoff
• [Secure-testing-team] Bug#859815: CVE-2017-7572 Moritz Muehlenhoff
• [Secure-testing-team] Bug#859796: libxslt: CVE-2015-9019 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859714: lepton: CVE-2017-7448 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859696: ghostscript: CVE-2017-5951 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859694: ghostscript: CVE-2016-10220 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859666: ghostscript: CVE-2016-10219 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859662: ghostscript: CVE-2016-10217 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859655: golang-go.crypto: CVE-2017-3204 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859635: php-horde-crypt: CVE-2017-7413 CVE-2017-7414 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859592: proftpd-dfsg: CVE-2017-7418 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859560: xen: CVE-2017-7228: x86: broken check in memory_exchange() permits PV guest breakout (XSA-212) Salvatore Bonaccorso
• [Secure-testing-team] Bug#859559: horizon: CVE-2017-7400: XSS in federation mappings UI Salvatore Bonaccorso
• [Secure-testing-team] Bug#859516: python-django: CVE-2017-7234: Open redirect vulnerability in django.views.static.serve() Salvatore Bonaccorso
• [Secure-testing-team] Bug#859515: python-django: CVE-2017-7233: Open redirect and possible XSS attack via user-supplied numeric redirect URLs Salvatore Bonaccorso
• [Secure-testing-team] Bug#859500: curl: CVE-2017-7407 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859494: collectd: CVE-2017-7401 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859456: libarchive: CVE-2016-10209 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859448: radare2: CVE-2017-6194 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859447: radare2: CVE-2017-6448 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859331: libpodofo: CVE-2017-7379: heap-based buffer overflow in PoDoFo::PdfSimpleEncoding::ConvertToEncoding (PdfEncoding.cpp) Salvatore Bonaccorso
• [Secure-testing-team] Bug#859330: libpodofo: CVE-2017-7378: heap-based buffer overflow in PoDoFo::PdfPainter::ExpandTabs (PdfPainter.cpp) Salvatore Bonaccorso
• [Secure-testing-team] Bug#859329: libpodofo: CVE-2017-7380 CVE-2017-7381 CVE-2017-7382 CVE-2017-7383 (various NULL pointer dereference issues) Salvatore Bonaccorso
• [Secure-testing-team] Bug#859277: bzrtp: CVE-2016-6271: missing HVI check on DHPart2 packet reception Salvatore Bonaccorso
• [Secure-testing-team] Bug#859259: tigervnc: CVE-2017-7392 CVE-2017-7393 CVE-2017-7394 CVE-2017-7395 CVE-2017-7396 Salvatore Bonaccorso
• [Secure-testing-team] Bug#859159: pidgin: CVE-2017-2640 Salvatore Bonaccorso
• [Secure-testing-team] !!!! Greetings !!!! kong khemara
• [Secure-testing-team] Bug#859136: CVE-2016-1566: XSS vulnerability in file browser Antoine Beaupre
• [Secure-testing-team] Bug#859135: CVE-2016-10127: XXE attack via crafted SAML XML request or response Antoine Beaupre
• [Secure-testing-team] Bug#859025: imagemagick: CVE-2017-7275 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858873: radare2: CVE-2017-7274 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858872: eject: CVE-2017-6964: dmcrypt-get-device does not check the return values of setuid() or setgid() Salvatore Bonaccorso
• [Secure-testing-team] Bug#858844: cobbler: CVE-2016-9605: Cross site scripting in profile page Salvatore Bonaccorso
• [Secure-testing-team] Bug#858786: libplist: CVE-2017-6438 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858768: apparmor: CVE-2017-6507 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858763: potrace: CVE-2017-7263 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858739: apt-cacher: HTTP response splitting Salvatore Bonaccorso
• [Secure-testing-team] Bug#858683: pcre3: CVE-2017-7244 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858679: pcre3: CVE-2017-7246 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858678: pcre3: CVE-2017-7245 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858644: CVE-2017-6369: authenticated remote execution in firebird 2.5 before version 3.0.2 Damyan Ivanov
• [Secure-testing-team] Bug#858641: CVE-2017-6369: authenticated remote execution in firebird 2.5 before version 2.5.7 Damyan Ivanov
• [Secure-testing-team] Fidget Spinner--M81 Bill
• [Secure-testing-team] Bug#858568: nova: CVE-2017-7214 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858410: gitlab: CVE-2017-0882: Information Disclosure in Issue and Merge Request Trackers Salvatore Bonaccorso
• [Secure-testing-team] Bug#858379: pcs: CVE-2017-2661: Improper node name field validation when creating clusters leads to XSS Salvatore Bonaccorso
• [Secure-testing-team] Bug#858350: ghostscript: CVE-2017-7207 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858329: zoneminder: CVE-2017-7203 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858323: binutils: CVE-2017-7209 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858324: binutils: CVE-2017-7210 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858313: erlang: CVE-2016-10253 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858301: libapache-poi-java: CVE-2017-5644 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858255: Multiple security issues Moritz Muehlenhoff
• [Secure-testing-team] Bug#858230: pcre3: CVE-2017-7186 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858213: CVE-2016-3822 Moritz Muehlenhoff
• [Secure-testing-team] Bug#858177: CVE-2016-3921 Moritz Muehlenhoff
• [Secure-testing-team] Bug#858143: xrdp: CVE-2017-6967: incorrect placement of auth_start_session() Salvatore Bonaccorso
• [Secure-testing-team] Bug#858057: chicken: CVE-2017-6949 Salvatore Bonaccorso
• [Secure-testing-team] Bug#858055: libplist: CVE-2017-6440: Memory allocation error in parse_data_node Salvatore Bonaccorso
• [Secure-testing-team] Bug#857966: partclone: CVE-2017-6596 Salvatore Bonaccorso
• [Secure-testing-team] Bug#857744: qemu: CVE-2016-9603: cirrus: heap buffer overflow via vnc connection Salvatore Bonaccorso
• [Secure-testing-team] Bug#857651: Multiple security issues Moritz Muehlenhoff
• [Secure-testing-team] Bug#857642: putty: CVE-2017-6542: integer overflow permits memory overwrite by forwarded ssh-agent connections Salvatore Bonaccorso
• [Secure-testing-team] Bug#857473: roundcube: XSS issue in handling of a style tag inside of an svg element Salvatore Bonaccorso
• [Secure-testing-team] Bug#857466: r-base: CVE-2016-8714: R: Buffer overflow in the LoadEncoding functionality Salvatore Bonaccorso
• [Secure-testing-team] Bug#857295: lxc: CVE-2017-5985: lxc-user-nic didn't verify network namespace ownership Salvatore Bonaccorso
• [Secure-testing-team] Bug#857263: debian-maintainers: Hostility and failure to properly maintain Chromium package by Michael Gilbert Loreno Heer
• [Secure-testing-team] Bug#857255: lighttpd: mod_scgi: out of bounds read in scgi_demux_response Helmut Grohne
• [Secure-testing-team] Bug#857083: [bugreport-ng] Vault 7 Security Vulnerabilities Debian Francewhoa
• [Secure-testing-team] Bug#857073: wget: CVE-2017-6508: CRLF injection in the url_parse function in url.c Salvatore Bonaccorso
• [Secure-testing-team] Bug#857035: ettercap: CVE-2017-6430: Out-of-bounds read in etterfilter utility Salvatore Bonaccorso
• [Secure-testing-team] Bug#857026: wordpress: 4.7.3 security release Craig Small
• [Secure-testing-team] Bug#856978: qbittorrent: CVE-2017-6504 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856977: qbittorrent: CVE-2017-6503 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856971: freetype: CVE-2016-10244 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856969: qemu: CVE-2017-6505: infinite loop issue in ohci_service_ed_list Salvatore Bonaccorso
• [Secure-testing-team] Предложение договора Сергей Штанько
• [Secure-testing-team] Bug#856890: kde4libs: CVE-2017-6410: Information Leak when accessing https when using a malicious PAC file Salvatore Bonaccorso
• [Secure-testing-team] Bug#856889: kio: CVE-2017-6410: Information Leak when accessing https when using a malicious PAC file Salvatore Bonaccorso
• [Secure-testing-team] Bug#856883: [src:imagemagick] Fixed fd leak for webp coder Bastien ROUCARIÈS
• [Secure-testing-team] Bug#856881: [src:imagemagick] Avoid null pointer dereference in xcf coder Bastien ROUCARIÈS
• [Secure-testing-team] Bug#856882: [src:imagemagick] Added missing null check in psd coder Bastien ROUCARIÈS
• [Secure-testing-team] Bug#856880: [src:imagemagick] Fixed memory leak when creating nested exceptions in Magick++ Bastien ROUCARIÈS
• [Secure-testing-team] Bug#856878: [src:imagemagick] Assertion failure in TGA coder Bastien ROUCARIÈS
• [Secure-testing-team] Bug#856879: [src:imagemagick] out-of-bounds read Bastien ROUCARIÈS
• [Secure-testing-team] Bug#856649: suricata: IPv4 defrag evasion issue Salvatore Bonaccorso
• [Secure-testing-team] Bug#856648: suricata: dns: out of bound memory read Salvatore Bonaccorso
• [Secure-testing-team] Bug#856635: apt-cacher-ng: amplified remote disk space exhaustion on filesystems that support fallocate Helmut Grohne
• [Secure-testing-team] 75% OFF PCB PROMOTION. MADE IN U.S.A. bhvrechner
• [Secure-testing-team] Bug#856592: Multiple security issues Moritz Muehlenhoff
• [Secure-testing-team] Bug#856579: radare2: CVE-2017-6319 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856574: radare2: CVE-2017-6387 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856572: radare2: CVE-2017-6415 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856503: glibc: CVE-2016-10228: iconv(1) with -c option hangs on illegal multi-byte sequences Salvatore Bonaccorso
• [Secure-testing-team] Bug#856501: libcacard: CVE-2017-6414: host memory leakage while creating new APDU Salvatore Bonaccorso
• [Secure-testing-team] Bug#856479: srst2: insecure handling of system calls Andreas Tille
• [Secure-testing-team] Bug#856448: gdk-pixbuf: CVE-2017-6314: Infinite loop in io-tiff.c with large size Salvatore Bonaccorso
• [Secure-testing-team] Bug#856445: gdk-pixbuf: CVE-2017-6313: Integer underflow in io-icns.c Salvatore Bonaccorso
• [Secure-testing-team] Bug#856444: gdk-pixbuf: CVE-2017-6312: Possible out-of-bounds read Salvatore Bonaccorso
• [Secure-testing-team] AWS Rackspace Azure GoogleApps and Office365 users Cynthia Williams
• [Secure-testing-team] Bug#856400: libice: CVE-2017-2626: Weak Entropy Usage in Session Keys in libICE Salvatore Bonaccorso
• [Secure-testing-team] Bug#856399: libxdmcp: CVE-2017-2625: Weak entropy usage for session keys in libxdm Salvatore Bonaccorso
• [Secure-testing-team] Bug#856398: xorg-server: CVE-2017-2624: Timing attack against MIT Cookie Salvatore Bonaccorso
• [Secure-testing-team] Bug#856313: libvirt: CVE-2017-2635: Null pointer dereference when updating storage size on empty drives Salvatore Bonaccorso
• [Secure-testing-team] Bug#856269: ruby-zip: CVE-2017-5946 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856266: vim: CVE-2017-6349 CVE-2017-6350 Salvatore Bonaccorso
• [Secure-testing-team] Bug#856229: xen: XSA-207: memory leak when destroying guest without PT devices Salvatore Bonaccorso
• [Secure-testing-team] Bug#856114: wolfssl: CVE-2017-6076 Salvatore Bonaccorso
• [Secure-testing-team] Trouverdeposer.com - des petites annonces gratuites et professionnelles Trouverdeposer.com
• [Secure-testing-team] Bug#855970: [debian-archive-keyring] The release repository of testing (Stretch), and security updates repository too, have three misiing public keys Łukasz Konieczny
• [Secure-testing-team] Bug#855943: shadow: CVE-2017-2616: Sending SIGKILL to other processes with root privileges via su Salvatore Bonaccorso
• [Secure-testing-team] !! GREETINGS !!! hassan karam
• [Secure-testing-team] Bug#855791: qemu: CVE-2017-2620: cirrus_bitblt_cputovideo does not check if memory region is safe Salvatore Bonaccorso
• [Secure-testing-team] Bug#855705: munin-cgi-graph local file write vulnerability Tomaž Šolc
• [Secure-testing-team] Bug#855616: qemu: CVE-2017-6058: net: vmxnet3: OOB NetRxPkt::ehdr_buf access when doing vlan stripping Salvatore Bonaccorso
• [Secure-testing-team] Bug#855611: qemu: CVE-2017-5973: usb: infinite loop while doing control transfer in xhci_kick_epctx Salvatore Bonaccorso
• [Secure-testing-team] Bug#855588: memory leak could lead to Denial Of Service Antoine Beaupre
• [Secure-testing-team] Bug#855520: bind9: CVE-2017-3135: Salvatore Bonaccorso
• [Secure-testing-team] Bug#855408: wireshark: CVE-2017-6014: crafted or malformed STANAG 4607 capture file will cause an infinite loop Salvatore Bonaccorso
• [Secure-testing-team] Bug#855405: pcre3: CVE-2017-6004 Salvatore Bonaccorso
• [Secure-testing-team] Bug#855344: thunderbird: retains mails from removed IMAP accounts Adam Borowski
• [Secure-testing-team] Propisi Crne Gore na jednom mjestu [Paragraf Lex MNE d.o.o.] Paragraf
• [Secure-testing-team] Bug#855227: qemu: CVE-2017-2630: nbd: oob stack write in client routine drop_sync Salvatore Bonaccorso
• [Secure-testing-team] Bug#855225: kodi: CVE-2017-5982: Unrestricted file download Salvatore Bonaccorso
• [Secure-testing-team] Bug#855159: qemu: CVE-2017-5987: sd: infinite loop issue in multi block transfers Salvatore Bonaccorso
• [Secure-testing-team] devenir Alexandre
• [Secure-testing-team] Bug#855142: tmpfile are not random Bastien ROUCARIES
• [Secure-testing-team] Bug#855108: irssi: memory leak Salvatore Bonaccorso
• [Secure-testing-team] Bug#855099: libquicktime: CVE-2016-2399 Salvatore Bonaccorso
• [Secure-testing-team] Bug#855048: qgis: Ships an unsupported copy of QtWebkit in public Python path without any transition Raphaël Hertzog
• [Secure-testing-team] Bug#854804: saned: SANE_NET_CONTROL_OPTION response packet may contain memory contents of the server Kritphong Mongkhonvanit
• [Secure-testing-team] Bug#854742: CVE-2017-5930 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854739: CVE-2017-5591 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854740: CVE-2017-5591 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854738: CVE-2017-5604 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854737: CVE-2017-5603 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854735: CVE-2017-5592 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854736: CVE-2017-5593 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854734: CVE-2017-5896 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854733: CVE-2017-5367 / CVE-2017-5367 / CVE-2017-5368 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854731: CVE-2017-2615 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854730: CVE-2017-5931 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854729: CVE-2017-5898 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854728: CVE-2016-10214 / CVE-2017-5937 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854727: Multiple vulnerabilities / unsuitable for stretch? Moritz Muehlenhoff
• [Secure-testing-team] Bug#854723: diffoscope writes to arbitrary locations on disk based on the contents of an untrusted archive Ximin Luo
• [Secure-testing-team] invitation Soiree Decouverte
• [Secure-testing-team] Bug#854390: python-bottle-cork: insecure default hashing algorithm Debian/GNU
• [Secure-testing-team] Bug#854336: CVE-2016-9577 CVE-2016-9578 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854278: CVE-2017-5666 Moritz Muehlenhoff
• [Secure-testing-team] Bug#854272: CVE-2016-10201 CVE-2016-10202 CVE-2016-10203 CVE-2016-10204 CVE-2016-10205 CVE-2016-10206 Moritz Muehlenhoff
• [Secure-testing-team] grub: Bootloader password with special chars does not work hashed by pbkdf2 Andreas Sperber
• [Secure-testing-team] Bug#854000: CVE-2017-5834 CVE-2017-5835 CVE-2017-5836 Moritz Muehlenhoff
• [Secure-testing-team] Bug#853998: CVE-2017-3250 / CVE-2017-3249 / CVE-2017-3247 / CVE-2016-5528 / CVE-2016-5519 Moritz Muehlenhoff
• [Secure-testing-team] Bug#853997: CVE-2017-5849 Moritz Muehlenhoff
• [Secure-testing-team] Bug#853996: CVE-2017-5667 / CVE-2017-5856 / CVE-2017-5857 Moritz Muehlenhoff
• [Secure-testing-team] Bug#853951: iio-sensor-proxy: configures dbus-daemon to be insecure Simon McVittie
• [Secure-testing-team] Bug#853282: bitlbee: Incomplete fix for "Null pointer dereference with file transfer request from unknown contacts" issue Salvatore Bonaccorso
• [Secure-testing-team] Bug#853278: libarchive: CVE-2017-5601 Salvatore Bonaccorso
• [Secure-testing-team] Bug#853232: libphp-phpmailer: CVE-2017-5223 Moritz Muehlenhoff
• [Secure-testing-team] Bug#853134: svgsalamander: CVE-2017-5617 Salvatore Bonaccorso
• [Secure-testing-team] Svar Santander Bnk UK
• [Secure-testing-team] Bug#853076: wavpack: CVE-2016-10169 CVE-2016-10170 CVE-2016-10171 CVE-2016-10172 Salvatore Bonaccorso
• [Secure-testing-team] Bug#853075: ruby-minitar: CVE-2016-10173: directory traversal vulnerability Salvatore Bonaccorso
• [Secure-testing-team] Bug#853006: qemu: CVE-2016-9602: 9p: virtfs allows guest to access host filesystem Salvatore Bonaccorso
• [Secure-testing-team] Bug#853004: security: javascript in the book can access files on the computer using XMLHttpRequest? Antoine Beaupre
• [Secure-testing-team] Bug#853002: qemu: CVE-2017-5579: serial: host memory leakage 16550A UART emulation Salvatore Bonaccorso
• [Secure-testing-team] Bug#852934: s-nail: local root privilege escalation Salvatore Bonaccorso
• [Secure-testing-team] Bug#852767: wordpress: 4.7.2 security release Salvatore Bonaccorso
• [Secure-testing-team] Bug#852751: [cryptkeeper] Sets the same password "p" for everything independently of user input Kirill Tkhai
  • Re: [Secure-testing-team] Bug#852751: [cryptkeeper] Sets the same password "p" for everything independently of user input Simon McVittie
• [Secure-testing-team] Bug#852742: python-oslo.middleware: CVE-2017-2592: CatchErrors leaks sensitive values in oslo.middleware Salvatore Bonaccorso
• [Secure-testing-team] Bug#852627: lcms2: CVE-2016-10165: heap OOB read parsing crafted ICC profile Salvatore Bonaccorso
• [Secure-testing-team] Bug#852604: virglrenderer: CVE-2017-5580 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852603: virglrenderer: CVE-2016-10163 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852454: quagga: CVE-2017-5495 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852385: libplist: CVE-2017-5545 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852275: hexchat: CVE-2016-2087 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852232: qemu: CVE-2016-10155 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852213: tigervnc: Buffer overflow in ModifiablePixelBuffer::fillRect Salvatore Bonaccorso
• [Secure-testing-team] Bug#852119: qemu: CVE-2017-5552 Salvatore Bonaccorso
• [Secure-testing-team] Bug#852109: ntopng: CVE-2017-5473 Moritz Muehlenhoff
• [Secure-testing-team] Bug#852094: hesiod: CVE-2016-10151: Weak SUID check allowing privilege elevation Salvatore Bonaccorso
• [Secure-testing-team] Bug#852093: hesiod: CVE-2016-10152: Use of hard-coded DNS domain if configuration file cannot be read Salvatore Bonaccorso
• [Secure-testing-team] Bug#852034: libical: CVE-2016-9584: heap use-after-free Salvatore Bonaccorso
• [Secure-testing-team] Bug#852031: cgiemail: multiple vulnerabilities (format string injection, open redirect, HTTP header injection, reflected XSS vulnerability) Salvatore Bonaccorso
• [Secure-testing-team] Bug#852029: netbeans: CVE-2016-5537: Import directory traversal Salvatore Bonaccorso
• [Secure-testing-team] Bug#852021: qemu: CVE-2017-5525 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851910: qemu: CVE-2017-5526 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851771: php-gettext: CVE-2016-6175 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851770: php-gettext: CVE-2015-8980 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851769: 389-ds-base: CVE-2017-2591 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851759: mariadb-10.1: CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3312 CVE-2017-3317 CVE-2017-3318 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851755: mariadb-10.0: CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3312 CVE-2017-3317 CVE-2017-3318 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851710: zoneminder: CVE-2016-10140 Salvatore Bonaccorso
• [Secure-testing-team] Bug#851667: openjdk-8-jre-headless needs Breaks: ca-certificates-java (<< 20160321~) Adrian Bunk
• [Secure-testing-team] Bug#851619: new upstream release fixes a bag of CVEs Toni Mueller
• [Secure-testing-team] Bug#851612: opus: CVE-2017-0381: Memory corruption during media file and data processing Salvatore Bonaccorso

• Earlier messages
• Later messages