Debian DSA-1895-1 : xmltooling - several vulnerabilities

Several vulnerabilities have been discovered in the xmltooling packages, as used by Shibboleth : - Chris Ries discovered that decoding a crafted URL leads to a crash and potentially, arbitrary code execution. - Ian Young discovered that embedded NUL characters in certificate names were not...

Debian Security Advisory DSA 1155-2 (sendmail)

The remote host is missing an update to sendmail announced via advisory DSA 1155-2. It turned out that the sendmail binary depends on libsasl2 = 2.1.19.dfsg1 which is neither available in the stable nor in the the security archive. This version is scheduled for the inclusion in the next update of...