Security advisories for Thursday

[Posted January 14, 2016 by jake]

Security advisories for Thursday

[Security] Posted Jan 14, 2016 16:23 UTC (Thu) by jake

Debian has updated libpng (two vulnerabilities), pygments (code execution), and wordpress (cross-site scripting).

Debian-LTS has updated cacti (SQL injection) and inspircd (denial of service and possible IRC network privilege escalation).

Fedora has updated gajim (F23; F22: man-in-the-middle attack), nodejs-ws (F23; F22: remote information disclosure), and perl-PathTools (F23: tainting botch).

Mageia has updated apache-commons-collections (code execution), kernel-linus (multiple vulnerabilities), kernel-tmb (multiple vulnerabilities), libtiff (three vulnerabilities), mono (code execution from 2009), and roundcubemail (path traversal).

openSUSE has updated gajim (42.1: man-in-the-middle attack), libpng12 (42.1: code execution), libpng15 (42.1: code execution), libpng16 (42.1: code execution), libxml2 (42.1: multiple vulnerabilities), and python-rsa (signature forgery).

SUSE has updated java-1_6_0-ibm (SLE10SP4: multiple vulnerabilities).

Ubuntu has updated thunderbird (multiple vulnerabilities).

Comments (none posted)