Friday's security updates

CentOS has updated cups (code execution), dbus-glib (privilege escalation), and libxml2 (denial of service).

Debian has updated cfingerd (code execution).

openSUSE has released a metric boatload of updates for various closed-source packages: acroread (one and two; multiple vulnerabilities), flash-player (one, two, three, four, five, six, and seven; multiple vulnerabilities), and opera (one, two, three, and four; multiple vulnerabilities).

Oracle has updated bind (denial of service), cups (code execution), ipa (denial of service), kernel (privilege escalation), kernel-uek (privilege escalation), libxml2 (denial of service), openchange (code execution), and samba4 (code execution).

Red Hat has updated cups (code execution), libxml2 (denial of service), and openshift (multiple vulnerabilities).

Scientific Linux has updated 389-ds-base (information disclosure), automake (code execution), bind (denial of service), cups (code execution), dbus-glib (privilege escalation), dhcp (denial of service), dnsmasq (denial of service), gdb (code execution), httpd (multiple vulnerabilities), libvirt (denial of service), libxml2(denial of service), openssh (code execution), pam (multiple vulnerabilities), pcsc-lite (code execution), php (multiple vulnerabilities), pki-core (multiple cross-site-scripting vulnerabilities), squid (denial of service), and xinetd (firewall bypass).

SUSE has updated flash-player (multiple vulnerabilities).

Ubuntu has updated firefox (denial of service; regression) and openssl (denial of service; regression).