Debian Linux Security Advisory 4094-2 - CA'me Chilliet from the FusionDirectory team detected a regression in the previously issued fix for CVE-2017-1000480. This regression only affects the Jessie version of the patch.
a4a4694e28ccfca5d8bf2d9ad772854d674221d653add527ca61b2490cdaaa18
Debian Linux Security Advisory 4094-1 - It was discovered that Smarty, a PHP template engine, was vulnerable to code-injection attacks. An attacker was able to craft a filename in comments that could lead to arbitrary code execution on the host running Smarty.
10d1177f7e54651d534936029798276dcc8f90250251e3e03899860e929c0e1e