-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Package : potrace
Version : 1.10-1+deb7u2
CVE ID : CVE-2016-8685
Debian Bug : 843861
It was discovered that potrace, an utility to transform bitmaps into
vector graphics, was affected by an integer overflow in the findnext
function, allowing remote attackers to cause a denial of service
(invalid memory access and crash) via a crafted BMP image.
For Debian 7 "Wheezy", these problems have been fixed in version
1.10-1+deb7u2.
We recommend that you upgrade your potrace packages.
Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----
iQIzBAEBCAAdFiEErLe2fxl/mzIVM0McrJCsPsUkBl4FAljqkmgACg kQrJCsPsUk
Bl6PfhAAnGh4McwsPFzT8yjjQtvpDpjDi0HTOPihGH+T2/ GhitKgHZ0oALPOeWpg
Fc2KOVe6UNFhJlC/OQDcJ0oBDBmXOZ8MLXrfdIj8XAK8oA BHdWAgQbiOdjY5M0+l
qxBCBPaXdnyq5ZuJh0i428vudOU1HnC1iHcZBHN48yqkr4gmntOCxlxcz31d x5Xu
hcwyrT9PYqmHHAS9HM95n6ZL5hOsgHIdcU+xsm/VKvtQPsveU/ 90v3w0YWB0FHzD
OtZ6mCfb6lIuE6JFiGpEG2g7JvWJYNPbcc6uML5Sytxe2vaaT62DKwsZiWQB LAVp
MQg0FUtUysxaOIOYWz71E44ow67Ci38G/Xop14Y5SXrPtAtkCMW++//l1/ eWnG8c
aFc2tDFz3O1KlcQXte+1vM4w4DTMWHQNAKyr6YG5ryW77fZi5 rw/9KYLabDYoNda
FSjF/joQMAAJfiRIih7qsCh/YrI7VRr2QOE3rcZwqsdlNDExu1rk8l peVVNwA+dy
2BlC+67YTjkZcIsA+sAOH1+D94kJT15p8tr2NodsukODgi/ nY2cLgC5oKFuohDAt
N/7GmFudjfnLC0CYjom+9K3yPn8oOhKBLHhFJKwDJAfu8heS/ Sda+1Hs91F7/Tgw
FytIcmbWtrukGrtA92aGnsSmg4hXnZ8LVUjIIgpgLlRxq6G8p9U=
=0uo0
-----END PGP SIGNATURE-----