Debian 10225 Published by

The following 2 updates are available for Debian 6 LTS:

[DLA 348-1] smokeping security update
[DLA 353-1] imagemagick security update



[DLA 348-1] smokeping security update

Package : smokeping
Version : 2.3.6-5+squeeze2
CVE ID : CVE-2013-4168

CVE-2013-4168

Minor XSS issue resolved in the upstream 2.6.9, discovered by Steven
Chamberlain and backported by the LTS security team.

[DLA 353-1] imagemagick security update

Package : imagemagick
Version : 8:6.6.0.4-3+squeeze7
Debian Bug : 806441

Submitting specially crafted icons (.ico) or .pict images to ImageMagick
can trigger integer overflows that can lead to buffer overflows and
memory allocations issues. Depending on the case, this can lead to a
denial of service or possibly worse.

For Debian 6 Squeeze, those issues have been fixed in imagemagick
8:6.6.0.4-3+squeeze7. We recommend that you upgrade your packages.