Debian DLA-1317-1 : net-snmp security update

It was discovered that there was a heap corruption vulnerability in the net-snmp framework which exchanges server management information in a network. For Debian 7 'Wheezy', this issue has been fixed in net-snmp version 5.7.2.1+dfsg-1+deb8u1. We recommend that you upgrade your net-snmp packages...

CVE-2014-9526

Summary: CVE-2014-9526 affects concrete5 up to version 5.7.2.1 (and 5.7.2 and earlier) with multiple cross-site scripting (XSS) flaws. The vulnerabilities arise from insufficient sanitization of user input in two endpoints: (1) gName parameter in single_pages/dashboard/users/groups/bulkupdate.php...