apticron report [Fri, 03 Mar 2017 23:38:18 +0100] ======================================================================== apticron has detected that some packages need upgrading on: quigon.federez.net [ 160.228.155.65 ] The following packages are currently pending an upgrade: imagemagick 8:6.8.9.9-5+deb8u7 imagemagick-6.q16 8:6.8.9.9-5+deb8u7 imagemagick-common 8:6.8.9.9-5+deb8u7 libmagickcore-6.q16-2 8:6.8.9.9-5+deb8u7 libmagickcore-6.q16-2-extra 8:6.8.9.9-5+deb8u7 libmagickwand-6.q16-2 8:6.8.9.9-5+deb8u7 munin-common 2.0.25-1+deb8u3 munin-node 2.0.25-1+deb8u3 munin-plugins-core 2.0.25-1+deb8u3 munin-plugins-extra 2.0.25-1+deb8u3 ======================================================================== Package Details: Lecture des fichiers de modifications (« changelog »)... --- Modifications pour munin (munin-common munin-node munin-plugins-core munin-plugins-extra) --- munin (2.0.25-1+deb8u3) jessie-security; urgency=high * Non-maintainer upload by the Security Team. * cgi: use Scalar::Util::looks_like_number. Fix regression, causing munin-cgi-graph to spam munin logs with Perl warnings of uninitialized value use for $size_x, $size_y, $upper_limit or $lower_limit. (Closes: #856536) -- Salvatore Bonaccorso <carnil(a)debian.org> Fri, 03 Mar 2017 06:10:34 +0100 munin (2.0.25-1+deb8u2) jessie-security; urgency=high * Non-maintainer upload by the Security Team. * cgi: handle the empty string in CGI arguments. Fix regression in zooming functionality via munin-cgi-graph introduced by the original fix for CVE-2017-6188. (Closes: #856455) -- Salvatore Bonaccorso <carnil(a)debian.org> Wed, 01 Mar 2017 21:05:07 +0100 --- Modifications pour imagemagick (imagemagick imagemagick-6.q16 imagemagick-common libmagickcore-6.q16-2 libmagickcore-6.q16-2-extra libmagickwand-6.q16-2) --- imagemagick (8:6.8.9.9-5+deb8u7) jessie-security; urgency=medium * Fix Ipl file missing malloc check (Closes: #851483). Fix CVE-2016-10145. * Fix wpg file off by one (Closes: #851483). Fix CVE-2016-10145. * Fix a memory leak in caption coders (Closes: #851380). Fix CVE-2016-10146. * Fix possible buffer overflow when writing compressed TIFFS. (Closes: #848139). Fix CVE-2016-8707. * Fix a double free in profile due to overflow (Closes: #851383). Fix CVE-2017-5506. * Fix memory leak in MPC file handling (Closes: #851382). Fix CVE-2017-5507 * Fix Heap-Buffer-Overflow in TIFF coder (Closes: #851381). Fix CVE-2017-5508 * Fix improper cast that could cause an overflow. (Closes: #851374). Fix CVE-2017-5511. * Fix memory corruption heap overflow in psb file. (Closes: #851376). Fix CVE-2017-5510. * Detect write error in ReadGROUP4Image. (Closes: #849439). Fix CVE-2016-10062 -- Bastien Roucariès <roucaries.bastien+debian(a)gmail.com> Sun, 12 Feb 2017 22:08:25 +0100 ======================================================================== You can perform the upgrade by issuing the command: apt-get dist-upgrade as root on quigon.federez.net -- apticron