Edit: This is only the commit for the HIGH severity CVE-2016-6304.
https://security-tracker.debian.org/tracker/source-package/o... has a good overview of each issue with links to commits etc on each CVE entry.
Edit: This is only the commit for the HIGH severity CVE-2016-6304.