- CVE-2014-9274
check that accesses to color table stay within bounds
Patches taken from upstream commits:
- CVE-2014-9275: 1df886f2e65f7c512a6217588ae8d94d4bcbc63d
3c7ff3f888de0f0d957fe67b6bd4bec9c0d475f3
For Debian 6 Squeeze, these issues have been fixed in unrtf version 0.19.3-1.1+deb6u1