Errata overview
Errata ID 326
Date 2018-04-18
Source package augeas
Fixed in version 1.2.0-0.2+deb8u2
This update addresses the following issue:
* Augeas versions up to and including 1.8.0 are vulnerable to heap-based
  buffer overflow due to improper handling of escaped strings. Attacker could
  send crafted strings that would cause the application using augeas to copy
  past the end of a buffer, leading to a crash or possible code execution.
Additional notes
CVE ID CVE-2017-7555
UCS Bug number #45356