Thursday's security updates

Debian has updated moodle (multiple cross-site scripting and information disclosure flaws).

Fedora has updated tomboy (F14; F15: code execution).

openSUSE has updated groff (insecure tmp file usage), libvirt (arbitrary host file access), and php5 (multiple vulnerabilities).

Ubuntu has updated nagios (cross-site scripting), libvirt (two vulnerabilities), and libxml2 (code execution).