Wednesday's security updates
Wednesday's security updates
CentOS has updated conga (C5: remote privilege escalation).
Debian has updated libmojolicious-perl (directory traversal) and request-tracker (multiple vulnerabilities).
Fedora has updated libtiff (F14: code execution bug with 2009 CVE number) and kdelibs (F13: web site spoofing).
Mandriva has updated kdelibs4 (web site spoofing).
Red Hat has updated polkit (local privilege escalation).
Slackware has updated polkit (local privilege escalation).
Ubuntu has updated openslp (denial of service), policykit (local privilege escalation), krb5 ("denial of service" - though the CVE entry says that code execution is possible as well), language-selector (local privilege escalation), and dhcp3 (remote root command execution).