-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Package : potrace Version : 1.10-1+deb7u2 CVE ID : CVE-2016-8685 Debian Bug : 843861 It was discovered that potrace, an utility to transform bitmaps into vector graphics, was affected by an integer overflow in the findnext function, allowing remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image. For Debian 7 "Wheezy", these problems have been fixed in version 1.10-1+deb7u2. We recommend that you upgrade your potrace packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEErLe2fxl/mzIVM0McrJCsPsUkBl4FAljqkmgACgkQrJCsPsUk Bl6PfhAAnGh4McwsPFzT8yjjQtvpDpjDi0HTOPihGH+T2/GhitKgHZ0oALPOeWpg Fc2KOVe6UNFhJlC/OQDcJ0oBDBmXOZ8MLXrfdIj8XAK8oABHdWAgQbiOdjY5M0+l qxBCBPaXdnyq5ZuJh0i428vudOU1HnC1iHcZBHN48yqkr4gmntOCxlxcz31dx5Xu hcwyrT9PYqmHHAS9HM95n6ZL5hOsgHIdcU+xsm/VKvtQPsveU/90v3w0YWB0FHzD OtZ6mCfb6lIuE6JFiGpEG2g7JvWJYNPbcc6uML5Sytxe2vaaT62DKwsZiWQBLAVp MQg0FUtUysxaOIOYWz71E44ow67Ci38G/Xop14Y5SXrPtAtkCMW++//l1/eWnG8c aFc2tDFz3O1KlcQXte+1vM4w4DTMWHQNAKyr6YG5ryW77fZi5rw/9KYLabDYoNda FSjF/joQMAAJfiRIih7qsCh/YrI7VRr2QOE3rcZwqsdlNDExu1rk8lpeVVNwA+dy 2BlC+67YTjkZcIsA+sAOH1+D94kJT15p8tr2NodsukODgi/nY2cLgC5oKFuohDAt N/7GmFudjfnLC0CYjom+9K3yPn8oOhKBLHhFJKwDJAfu8heS/Sda+1Hs91F7/Tgw FytIcmbWtrukGrtA92aGnsSmg4hXnZ8LVUjIIgpgLlRxq6G8p9U= =0uo0 -----END PGP SIGNATURE-----
Attachment:
signature.asc
Description: PGP signature