Some weekend security updates [LWN.net]

Lest the LWN mailbox collapse under the load of security advisories (many of which are Java-related) coming through, we'll send them out now:

CentOS has updated java-1.6.0-openjdk (C5, C6: 20 CVE numbers) and java-1.7.0-openjdk (C5, C6: 22 CVE numbers).

Fedora has updated squid (F17, F18: denial of service), kernel (F18: local privilege escalation), sssd (F18: local privilege escalation and denial of service), java-1.6.0-openjdk (F16: 20 CVE numbers), java-1.7.0-openjdk (F16, F17, F18: 22 CVE numbers), wordpress (F17, F18: multiple vulnerabilities), rubygem-activesupport (F16, F17: nasty remote vulnerabilities), android-tools (F16, F17, F18: temporary file vulnerability), and openstack-nova (F17: unauthorized volume access).

Mageia has updated apache-poi (denial of service), libreoffice (denial of service), mariadb (code execution, denial of service, and information disclosure), and abrt (privilege escalation).

Mandriva has updated libssh (denial of service).

openSUSE has updated kernel (credential spoofing) and mysql (code execution, denial of service, and information disclosure).

Oracle has updated java-1.6.0-openjdk (OL5, OL6: 20 CVE numbers) and java-1.7.0-openjdk (OL6: 22 CVE numbers).

Red Hat has updated java-1.6.0-openjdk (RHEL5, RHEL6: 20 CVE numbers) and java-1.7.0-openjdk (RHEL5-6: 22 CVE numbers).

Scientific Linux has updated java-1.6.0-openjdk ( SL5, SL6: 20 CVE numbers) and java-1.7.0-openjdk (SL5-6: 22 CVE numbers).

Slackware has updated openssl (multiple vulnerabilities).

(Log in to post comments)