Thursday's security updates

[Posted December 8, 2016 by jake]

Thursday's security updates

[Security] Posted Dec 8, 2016 17:00 UTC (Thu) by jake

Debian has updated xen (multiple vulnerabilities).

Debian-LTS has updated gst-plugins-bad0.10 (code execution) and gst-plugins-base0.10 (code execution).

Fedora has updated memcached (F25: three vulnerabilities), ntp (F25; F24; F23: multiple vulnerabilities), php-php-gettext (F23: code execution), and phpMyAdmin (F23: multiple vulnerabilities).

Gentoo has updated binutils (multiple vulnerabilities from 2014), coreutils (code execution from 2014), cracklib (code execution), jq (code execution from 2015), openjpeg (multiple vulnerabilities, one from 2015), socat (encryption botch), and sqlite (code execution from 2015).

Mageia has updated kernel (multiple vulnerabilities) and ntp (multiple vulnerabilities).

openSUSE has updated kernel (42.2; 42.1: multiple vulnerabilities, some from 2015).

Oracle has updated kernel 4.1.12 (OL7; OL6: two vulnerabilities).

Red Hat has updated atomic-openshift (RHOSCP 3.3, 3.2, 3.1:), chromium-browser (RHEL6: many vulnerabilities), and openstack-cinder and openstack-glance (RHOSP 9.0: denial of service from 2015).

SUSE has updated firefox (SLE12: code execution), java-1_6_0-ibm (SLE11: multiple vulnerabilities), java-1_7_1-ibm (SLE12; SLE11: multiple vulnerabilities), kernel (SLE12: three vulnerabilities), and xen (SLE11: multiple vulnerabilities).

Ubuntu has updated openjdk-6 (12.04: multiple vulnerabilities).

Comments (none posted)