LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Pencil, Pencil, and Pencil

Dividing the Linux desktop

LWN.net Weekly Edition for June 13, 2013

A report from pgCon 2013

Little things that matter in language design

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Thursday's security updates

[Posted October 11, 2012 by jake]

CentOS has updated firefox (C6: multiple vulnerabilities) and thunderbird (C6: multiple vulnerabilities).

Fedora has updated thunderbird (F17: multiple vulnerabilities), firefox (F17: multiple vulnerabilities), thunderbird-lightning (F17: multiple vulnerabilities), and xulrunner (F17: multiple vulnerabilities).

Mageia has updated bind (denial of service), firefox (multiple vulnerabilities), thunderbird (multiple vulnerabilities), flash-player-plugin (tons of vulnerabilities), hostapd (denial of service), and roundcubemail (two cross-site scripting flaws).

Mandriva has updated firefox (multiple vulnerabilities) and libxslt (multiple vulnerabilities).

openSUSE has updated wireshark (multiple vulnerabilities) and optipng (code execution).

Oracle has updated thunderbird (OL6: multiple vulnerabilities) and firefox (OL5; OL6: multiple vulnerabilities).

Red Hat has updated libvirt (RHEL6: denial of service).

Scientfic Linux has updated libvirt (SL6: denial of service).

Slackware has updated bind (denial of service).

SUSE has updated flash-player (SLE10SP4: tons of vulnerabilities).

Ubuntu has updated ruby1.9.1 (12.04: two access restriction bypass flaws), ruby1.8 (two access restriction bypass flaws), moin (two vulnerabilities), and quagga (denial of service).

(Log in to post comments)

Thursday's security updates

Posted Oct 11, 2012 20:25 UTC (Thu) by cesarb (subscriber, #6266) [Link]

Note that at least Fedora's update to firefox was to 16.0, not 16.0.1. See https://lwn.net/Articles/519422/.

Thursday's security updates

Posted Oct 12, 2012 0:27 UTC (Fri) by jspaleta (subscriber, #50639) [Link]

16.0.1 has been pushed into the stable updates.

https://admin.fedoraproject.org/updates/FEDORA-2012-15863

16.0.1 should show up soon on the external mirrors when they sync to the master stable repo.

Until then, should be available in the updates-testing tree right now for users who don't want to wait for mirrors to sync.

Thursday's security updates

Posted Oct 12, 2012 4:54 UTC (Fri) by jspaleta (subscriber, #50639) [Link]

Apologies,
The correct link for the 16.0.1 update is this:
https://admin.fedoraproject.org/updates/firefox-16.0.1-1....

its in updates-testing push request to stable has been made.

-jef

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds