Univention Corporate Server 4.2 erratum 383 (security)

This update addresses the following issues:
* There is a stack-based buffer overflow in the fmt_entry function. A crafted
  input will lead to a remote arbitrary code execution attack.
  (CVE-2017-10684)
* There is a format string vulnerability in the fmt_entry function. A crafted
  input will lead to a remote arbitrary code execution attack.
  (CVE-2017-10685)
* There is an attempted 0xffffffffffffffff access in the append_acs function
  of tinfo/parse_entry.c. It could lead to a remote denial of service attack
  if the terminfo library code is used to process untrusted terminfo data.
  (CVE-2017-11112)
* There is a NULL Pointer Dereference in the _nc_parse_entry function of
  tinfo/parse_entry.c. It could lead to a remote denial of service attack if
  the terminfo library code is used to process untrusted terminfo data.
  (CVE-2017-11113)
* There is an infinite loop in the next_char function in comp_scan.c, related
  to libtic. A crafted input will lead to a remote denial of service attack.
  (CVE-2017-13728)
* There is an illegal address access in the _nc_save_str function in
  alloc_entry.c. It will lead to a remote denial of service attack.
  (CVE-2017-13729)
* There is an illegal address access in the function _nc_read_entry_source()
  in progs/tic.c that might lead to a remote denial of service attack.
  (CVE-2017-13730)
* There is an illegal address access in the function postprocess_termcap() in
  parse_entry.c that will lead to a remote denial of service attack.
  (CVE-2017-13731)
* There is an illegal address access in the function dump_uses() in
  progs/dump_entry.c that might lead to a remote denial of service attack.
  (CVE-2017-13732)
* There is an illegal address access in the fmt_entry function in
  progs/dump_entry.c that might lead to a remote denial of service attack.
  (CVE-2017-13733)
* There is an illegal address access in the _nc_safe_strcat function in
  strings.c that will lead to a remote denial of service attack.
  (CVE-2017-13734)