Security advisories for Wednesday

[Posted January 20, 2016 by ris]

Security advisories for Wednesday

[Security] Posted Jan 20, 2016 17:47 UTC (Wed) by ris

Arch Linux has updated kernel (privilege escalation).

CentOS has updated kernel (C5: two remote denial of service vulnerabilities).

Debian has updated bind9 (denial of service) and ecryptfs-utils (privilege escalation).

Debian-LTS has updated bind9 (denial of service), ecryptfs-utils (privilege escalation), and librsvg (out-of-bounds heap read).

Fedora has updated libxmp (F23; F22: multiple vulnerabilities), mbedtls (F23; F22: memory leak), qemu (F22: multiple vulnerabilities), and radicale (F23; F22: multiple vulnerabilities).

openSUSE has updated cups-filters (Leap42.1: code execution).

Oracle has updated kernel (OL5: two remote denial of service vulnerabilities).

Scientific Linux has updated kernel (SL5: two remote denial of service vulnerabilities).

SUSE has updated bind (SLE12-SP1: denial of service).

Ubuntu has updated bind9 (denial of service), ecryptfs-utils (privilege escalation), kernel (15.10; 15.04; 14.04: privilege escalation), libxml2 (two vulnerabilities), linux-lts-trusty (12.04: privilege escalation), linux-lts-utopic (14.04: privilege escalation), linux-lts-vivid (14.04: privilege escalation), linux-lts-wily (14.04: privilege escalation), and linux-raspi2 (15.10: privilege escalation).

Comments (none posted)