14 DAY TRIAL // The Debian project proudly announced that two security updates have been released in the last couple of days.
Juts like the developers assert, they take security very seriously and they handle all the issues brought to their attention to ensure they're corrected within a reasonable timeframe.
Leo Iannacone and Colin Watson discovered a format string vulnerability in the Python bindings for the ClearSilver HTML template system, which may lead to denial of service or the execution of arbitrary code. This bug has been fixed.
The second fix was prompted by discovery of the fact that missing input sanitizing in the GIF decoder inside the CUPS printing system could lead to a denial of service or potentially arbitrary code execution through crafted GIF files. This is no longer an issue.
Download Debian 6.0.3 right now from Softpedia.