Wednesday's security advisories
Wednesday's security advisories
Arch Linux has updated jre7-openjdk (multiple vulnerabilities).
Debian has updated cacti (SQL injection).
Debian-LTS has updated python-tornado (side-channel attack).
openSUSE has updated ansible (13.2: two vulnerabilities), libressl (13.2: multiple vulnerabilities), pdns (13.2, 13.1: denial of service), and rubygem-activesupport-3_2 (13.2, 13.1: denial of service).
Red Hat has updated autofs (RHEL6: privilege escalation), bind (RHEL6: denial of service), curl (RHEL6: multiple vulnerabilities), freeradius (RHEL6: buffer overflow), gnutls (RHEL6: multiple vulnerabilities), grep (RHEL6: two vulnerabilities), hivex (RHEL6: code execution), httpd (RHEL6: access restriction bypass), ipa (RHEL6: cross-site scripting), kernel (RHEL6: multiple vulnerabilities), libreoffice (RHEL6: code execution), libxml2 (RHEL6: denial of service), mailman (RHEL6: two vulnerabilities), net-snmp (RHEL6: denial of service), ntp (RHEL6: multiple vulnerabilities), pacemaker (RHEL6: privilege escalation), pki-core (RHEL6: cross-site scripting), ppc64-diag (RHEL6: two vulnerabilities), python (RHEL6: multiple vulnerabilities), sudo (RHEL6: information disclosure), wireshark (RHEL6: multiple vulnerabilities), and wpa_supplicant (RHEL6: denial of service).
Ubuntu has updated lxc (15.04, 14.10, 14.04: two vulnerabilities) and mysql-5.5, mysql-5.6 (15.04, 14.10, 14.04, 12.04: multiple vulnerabilities).