|
|
Subscribe / Log in / New account

Security advisories for Wednesday

[Posted April 22, 2015 by ris]

Arch Linux has updated firefox (code execution).

CentOS has updated kernel (C6: multiple vulnerabilities), kvm (C5: two vulnerabilities), and qemu-kvm (C6: privilege escalation).

Debian has updated curl (multiple vulnerabilities) and subversion (two vulnerabilities).

Debian-LTS has updated wireshark (multiple vulnerabilities).

Fedora has updated ceph-deploy (F21: information leak), firefox (F20: multiple vulnerabilities), libzip (F21; F20: code execution), mingw-gnutls (F21: denial of service), mingw-libtasn1 (F21; F20: denial of service), openstack-neutron (F20: denial of service), python-virtualenv (F21; F20: insecure software download), qt5-qtwebkit (F21; F20: denial of service), and qtwebkit (F21; F20: denial of service).

openSUSE has updated Chromium (13.2, 13.1: multiple vulnerabilities).

Oracle has updated glibc (OL6: two vulnerabilities), kernel (OL6: multiple vulnerabilities), and qemu-kvm (OL6: privilege escalation).

Red Hat has updated kernel (RHEL5.9: privilege escalation), kvm (RHEL5: two vulnerabilities), and qemu-kvm (RHEL6: privilege escalation).

Scientific Linux has updated kernel (SL6: multiple vulnerabilities), kvm (SL5: two vulnerabilities), and qemu-kvm (SL6: privilege escalation).

Slackware has updated bind (denial of service), gnupg (multiple vulnerabilities), httpd (multiple vulnerabilities), libssh (two vulnerabilities), firefox (multiple vulnerabilities), thunderbird (multiple vulnerabilities), mutt (denial of service), ntp (two vulnerabilities), openssl (multiple vulnerabilities), php (multiple vulnerabilities), ppp (two vulnerabilities), proftpd (unauthenticated copying of files), qt (multiple vulnerabilities), and seamonkey (multiple vulnerabilities).

SUSE has updated mariadb (SLE12: multiple vulnerabilities).

to post comments

Security advisories for Wednesday

Posted Apr 23, 2015 8:46 UTC (Thu) by pr1268 (guest, #24648) [Link]

As a Slackware user, I sometimes get a little nervous whenever the SSA's are conspicuously absent from the LWN security advisories pages for an extended time (what's it been? 2 months or so?) and then *boom!*—they all appear at once (like today).

Oops, I stand corrected: LWN did mention SSA's on the April 1 and April 8 weekly editions.


Copyright © 2015, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds