pygments (1.6+dfsg-1ubuntu1.1) trusty-security; urgency=medium * SECURITY UPDATE: shell injection via font path - debian/patches/CVE-2015-8557.patch: use subprocess in pygments/formatters/img.py. - CVE-2015-8557 -- Marc Deslauriers <email address hidden> Fri, 18 Dec 2015 10:32:25 -0500