Thursday's security updates
Thursday's security updates
Arch Linux has updated qemu (code execution).
CentOS has updated firefox (C5: multiple vulnerabilities), kernel (C7: code execution), kvm (C5: code execution), qemu-kvm (C7; C6: code execution), and xen (C5: code execution).
Debian has updated iceweasel (multiple vulnerabilities) and qemu (multiple vulnerabilities).
Debian-LTS has updated icu (multiple vulnerabilities some from 2013).
Fedora has updated ca-certificates (F21: certificate changes), firefox (F21: multiple vulnerabilities), gnutls (F21: signature algorithm verification botch), libssh (F21: denial of service), and thunderbird (F21: two vulnerabilities).
Mageia has updated darktable (denial of service), kernel-linus (three vulnerabilities), kernel-tmb (multiple vulnerabilities), libraw (denial of service), qemu (code execution), rawtherapee (denial of service), ufraw and dcraw (denial of service), and wireshark (three dissector vulnerabilities).
Oracle has updated firefox (OL6: multiple vulnerabilities), kvm (OL5: denial of service), qemu-kvm (OL7; OL6: code execution), kernel (OL7; OL6; OL6; OL5: multiple vulnerabilities), and xen (OL5: code execution).
Scientific Linux has updated firefox (SL7,SL6,SL5: multiple vulnerabilities), kernel (SL7: code execution), kexec-tools (SL7: arbitrary file overwrite), pcs (SL7; SL6: privilege escalation), qemu-kvm (SL7; SL6: code execution), tomcat (SL7: HTTP request smuggling), and tomcat6 (SL6: HTTP request smuggling).
SUSE has updated kvm (SLE11SP3: denial of service).
Ubuntu has updated firefox (multiple vulnerabilities) and qemu, qemu-kvm (three vulnerabilities).