Changes: graphviz (2.38.0-7) unstable; urgency=high * QA upload. * Add CVE-2014-9157.patch. Fix format string vulnerability (CVE-2014-9157) in yyerror() routine which may allow attackers to cause a denial of service or possibly execute code. Thanks to Marc Deslauriers <[email protected]> (Closes: #772648) -- Salvatore Bonaccorso <[email protected]> Wed, 10 Dec 2014 07:21:52 +0100