apticron report [Sat, 20 Jun 2015 18:44:07 +0200] ======================================================================== apticron has detected that some packages need upgrading on: baldrick.crans.org [ 138.231.142.239 2a01:240:fe3d:4:62:61ff:fe6c:6401 138.231.142.239 ] [ 2a01:240:fe3d:4:62:61ff:fe6c:6401 ] The following packages are currently pending an upgrade: python-jwt 0.2.1-1+deb8u1 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour pyjwt (python-jwt) --- pyjwt (0.2.1-1+deb8u1) jessie-security; urgency=medium * debian/patches/01_not-use-asymmetric-keys-as-HMAC.patch - Add a check so that asymmetric keys cannot be used as HMAC secrets. See for more details: https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-toke… (Closes: #781640) -- Daniele Tricoli <eriol(a)mornie.org> Fri, 05 Jun 2015 03:25:03 +0200 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on baldrick.crans.org -- apticron