Thursday's security updates
Thursday's security updates
CentOS has updated foomatic (C6: three vulnerabilities, one from 2010), git (C7; C6: two code execution flaws), kernel (C6: two vulnerabilities), krb5 (C6: two vulnerabilities), and tomcat6 (C6: Security Manager bypass from 2014).
Debian has updated inspircd (denial of service), pidgin-otr (?:), and redmine (multiple unspecified information disclosure flaws).
Fedora has updated dropbear (F23; F22: information disclosure), kernel (F22; F23: three vulnerabilities), putty (F23; F22: code execution), and qemu (F23: multiple vulnerabilities).
openSUSE has updated dropbear (42.1, 13.2: information disclosure), graphite2 (42.1: three vulnerabilities), libssh (13.2: insecure sessions), perl (13.2: two vulnerabilities), pidgin-otr (42.1, 13.2: code execution), quagga (13.2: code execution), samba (42.1: ACL bypass), thunderbird (42.1, 13.2: multiple vulnerabilities), and tomcat (42.1: multiple vulnerabilities).
Oracle has updated git (OL7; OL6: two code execution flaws) and kernel 3.8.13 (OL7; OL6: two vulnerabilities).
Red Hat has updated python-django (RHOSP7OT for RHEL7; RHOSP7 for RHEL7; RHOSP6 for RHEL7; RHOSP5 for RHEL7; RHOSP5 for RHEL6: two vulnerabilities).
SUSE has updated rubygem-actionview-4_2 (OSC6, ES2.1: code execution) and xen (SLE12SP1: many vulnerabilities, some from 2014 and 2013).
Ubuntu has updated quagga (two vulnerabilities, one from 2013) and tiff (multiple vulnerabilities).