Security advisories for Monday [LWN.net]

Debian has updated xen (multiple vulnerabilities) and xen (regression in pygrub).

Fedora has updated kernel (F18; F17: privilege escalation), git (F18; F17: insufficient SSL host verification), ekiga (F18; F17: denial of service), ptlib (F18; F17: denial of service), mate-settings-daemon (F18; F17: insecure timezones), isync (F18; F17: information disclosure), opal (F18; F17: denial of service), openssl (F18: multiple vulnerabilities), yum (F18: denial of service), and pixman (F17: stack-based buffer overflow).

Mageia has updated python-django (multiple vulnerabilities), pixman (stack-based buffer overflow), sudo (privilege escalation), kernel (multiple vulnerabilities), kernel-tmb (multiple vulnerabilities), kernel-linus (multiple vulnerabilities), kernel-vserver (multiple vulnerabilities), kernel-rt (multiple vulnerabilities), java-1.7.0-openjdk (multiple vulnerabilities), and libxml2 (denial of service).

openSUSE has updated ruby19 (12.2: multiple vulnerabilities), rubygem-devise (12.2: unauthorized account access), java-1_6_0-openjdk (12.1; 11.4: multiple vulnerabilities), java-1_7_0-openjdk (multiple vulnerabilities), git (12.2, 12.1; 11.4: insufficient SSL host verification), and packagekit (12.2: installs old package versions).

Oracle has updated libxml2 (OL5: multiple vulnerabilities) and cups (OL5: privilege escalation).

Slackware has updated httpd (cross-site scripting).

(Log in to post comments)