LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Monday's security updates

[Posted December 19, 2011 by ris]

Monday's security updates
[Security] Posted Dec 19, 2011 18:49 UTC (Mon) by ris

Debian has updated xorg (restriction bypass), dtc (multiple vulnerabilities), mediawiki (multiple vulnerabilities), and asterisk (multiple vulnerabilities).

Fedora has updated phpmyadmin (F16; F15: cross-site scripting), ejabberd (F16; F15: denial of service), F16: abrt (information disclosure), and F16: libreport (information disclosure).

Mandriva has updated php-suhosin (crackable password hashing), libarchive (2010.1, 2011.0; ES5.0: arbitrary code execution).

Oracle has updated OL6: krb5 (denial of service), OL6: squid (denial of service), OL6: jasper (two code execution flaws), OL6: icu (code execution), OL6: dhcp (denial of service), OL6: pidgin (denial of service), OL6: qemu-kvm (privilege escalation), and OL6: ipmitool (denial of service).

Red Hat has updated libxfont (privilege escalation).

Ubuntu has updated libarchive (arbitrary code execution).

Comments (none posted)

Copyright © 2011, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds