LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Security advisories for Monday

[Posted November 21, 2011 by ris]

Security advisories for Monday
[Security] Posted Nov 21, 2011 20:58 UTC (Mon) by ris

Debian has updated spip (privilege escalation/cross-site scripting), freetype (code execution), and systemtap (privilege escalation/denial of service).

Fedora has updated puppet (F16; F15; F14: man-in-the-middle attack), proftpd (F16; F15; F14: remote code execution), moodle (F16; F15; F14: multiple vulnerabilities), drupal6-views (F16; F15; F14: SQL injection), F16: bind (denial of service), F16: kernel (multiple vulnerabilities), and F16: kdelibs (multiple vulnerabilities).

Gentoo has updated chromium (multiple vulnerabilities), maradns (denial of service), tintin++ (multiple vulnerabilities from 2008), radvd (multiple vulnerabilities), perl-core/Safe (restriction bypass), evince (arbitrary code execution), tar (arbitrary code execution), and abcm2ps (multiple vulnerabilities).

Mandriva has updated freetype2 (code execution).

openSUSE has updated wireshark (denial of service).

SUSE has updated wireshark (denial of service), mozilla-nss (multiple vulnerabilities), firefox (privilege escalation/cross-site scripting), and acroread (multiple vulnerabilities).

Ubuntu has updated software-center (man-in-the-middle attack/information disclosure) and kernel (multiple vulnerabilities).

Comments (none posted)

Copyright © 2011, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds