Security advisories for Monday
Security advisories for Monday
Debian has updated cups (privilege escalation) and modsecurity-apache (rules bypass).
Fedora has updated audacious-plugins (F20: denial of service), cinnamon (F20: denial of service), cinnamon-control-center (F20: denial of service), cinnamon-settings-daemon (F20: denial of service), cobbler (F20; F19: path traversal), control-center (F20: denial of service), empathy (F20: denial of service), ffgtk (F20: denial of service), firefox (F19: multiple vulnerabilities), fldigi (F20: denial of service), fluidsynth (F20: denial of service), gnome-settings-daemon (F20: denial of service), gnome-shell (F20: denial of service), gqrx (F20: denial of service), gstreamer1-plugins-good (F20: denial of service), guacamole-server (F20: denial of service), java-1.7.0-openjdk (F20: denial of service), libmikmod (F20: denial of service), minimodem (F20: denial of service), mumble (F20: denial of service), paprefs (F20: denial of service), phonon (F20: denial of service), pulseaudio (F20: denial of service), qemu (F20: denial of service), qmmp (F20: denial of service), qt (F20: denial of service), qt-mobility (F20: denial of service), qt5-qtmultimedia (F20: denial of service), sidplayfp (F20: denial of service), speech-dispatcher (F20: denial of service), sphinxtrain (F20: denial of service), spice-gtk (F20: denial of service), thunderbird (F20: multiple vulnerabilities), xmp (F20: denial of service), and zarafa (F20; F19: information disclosure).
Gentoo has updated openssl (multiple vulnerabilities).
Mageia has updated asterisk (multiple vulnerabilities), avidemux (undisclosed vulnerabilities), cacti (MG4: multiple vulnerabilities), dbus (two denial of service flaws), java-1.7.0-openjdk (multiple vulnerabilities), live555, vlc, mplayer (code execution), mariadb (unidentified vulnerabilities), nss, firefox, thunderbird (multiple vulnerabilities), owncloud (undisclosed vulnerability), pidgin (code execution), ruby-actionpack (MG4: two vulnerabilities), and transmission (code execution).
Oracle has updated kernel (OL5: two vulnerabilities).