Debian Linux Security Advisory 2355-1 - Leo Iannacone and Colin Watson discovered a format string vulnerability in the Python bindings for the Clearsilver HTML template system, which may lead to denial of service or the execution of arbitrary code.
99672fba33fe3030c4f3da44ad329d1f6038fc0105e9bb1b9ef2e529954d11b8