Security advisories for Wednesday

Arch Linux has updated chromium (multiple vulnerabilities) and dovecot (denial of service).

CentOS has updated 389-ds-base (C7: access control bypass).

Debian-LTS has updated jruby (denial of service).

Fedora has updated libreoffice (F21: code execution) and yourls (F21; F20: cross-site scripting).

Mandriva has updated lftp (MBS1.0: man-in-the-middle attack), libksba (MBS1.0, MBS2.0: denial of service), ntop (MBS1.0: cross-site-scripting), and t1utils (MBS1.0: multiple vulnerabilities).

openSUSE has updated curl (13.2, 13.1: multiple vulnerabilities) and python-Pillow (13.2: denial of service).

Oracle has updated 389-ds-base (OL7: access control bypass).

Comments (none posted)