Security advisories for Tuesday
Security advisories for Tuesday
Arch Linux has updated powerdns (denial of service).
Debian has updated openslp-dfsg (denial of service).
Debian-LTS has updated php5 (multiple vulnerabilities) and screen (denial of service).
Fedora has updated drupal6 (F22; F21: multiple vulnerabilities), drupal6-ctools (F22; F21: multiple vulnerabilities), drupal6-views_bulk_operations (F22; F21: access bypass), drupal7 (F22; F21: multiple vulnerabilities), gdk-pixbuf2 (F22; F21: code execution), mingw-gdk-pixbuf (F22; F21: code execution), and php-twig (F21: code execution).
Mageia has updated bind (MG4,5: denial of service), freeimage (MG4,5: integer overflow), hplip (MG4,5: man-in-the-middle attack), iceape (MG4,5: multiple vulnerabilities), jsoup (MG5: cross-site scripting), lighttpd (MG4,5: log injection), openafs (MG4,5: multiple vulnerabilities), and squashfs-tools (MG4,5: two vulnerabilities).
openSUSE has updated gdk-pixbuf (13.2: code execution), gnutls (13.2, 13.1: denial of service), net-snmp (13.2, 13.1: code execution), perl-XML-LibXML (13.2, 13.1: information disclosure), libgcrypt (13.2, 13.1: two vulnerabilities), and tor (13.2, 13.1: respect SafeLogging).
Red Hat has updated haproxy (RHEL6,7: information leak) and subversion (RHEL7: multiple vulnerabilities).
SUSE has updated bind (SLE11SP1: denial of service), firefox (SLE11SP2,SP1: two vulnerabilities), and java-1_6_0-ibm (SLE11SP3,SP2,SP1: multiple vulnerabilities).
Ubuntu has updated spice (15.04, 14.04: code execution).