Debian Security Advisory DSA 1704-2 - The update in DSA 1704-1 was incomplete as it missed to escape a few important characters which enabled an attacker to overwrite arbitrary files.
a53dde812a55df0e6191af651858f7f511c485436ae9c37e4f3c81409cb7e605
Debian Security Advisory DSA 1705-1 - It was discovered that netatalk, an implementation of the AppleTalk suite, is affected by a command injection vulnerability when processing PostScript streams via papd. This could lead to the execution of arbitrary code. Please note that this only affects installations that are configured to use a pipe command in combination with wildcard symbols substituted with values of the printed job.
92ec4039c91457686715bdcffc3bb80ebf78897c4ad7138eb6e1081fba4b9b35