Security advisories for Monday
Security advisories for Monday
Arch Linux has updated kernel (denial of service) and linux-grsec (denial of service).
Debian has updated chromium-browser (multiple vulnerabilities) and icedove (multiple vulnerabilities).
Debian-LTS has updated imagemagick (regression in previous update), jasper (multiple vulnerabilities), and libgsf (denial of service).
Fedora has updated cracklib (F25; F24: code execution), flex (F23: buffer overflow), gd (F25: three vulnerabilities), gstreamer-plugins-bad-free (F25: three vulnerabilities), gstreamer-plugins-base (F25; F24: code execution), gstreamer-plugins-good (F25: multiple vulnerabilities), gstreamer1-plugins-bad-free (F24: three vulnerabilities), gstreamer1-plugins-base (F24: code execution), httpd (F24: denial of service), kernel (F25; F24; F23: three vulnerabilities), libgsf (F25: denial of service), mcabber (F25; F24; F23: roster push attack), mingw-libarchive (F25: three vulnerabilities), openjpeg2 (F25; F24: denial of service), perl-DBD-MySQL (F24: use after free), php-php-gettext (F25; F24: code execution), phpMyAdmin (F24: multiple vulnerabilities), and roundcubemail (F25: code execution).
Gentoo has updated docker (privilege escalation), exfat-utils (two vulnerabilities from 2015), libmms (code execution from 2014), sox (code execution from 2014), and virtualbox (multiple vulnerabilities some from 2014 and 2015).
Mageia has updated python-tornado (XSRF protection bypass) and tomcat (two vulnerabilities).
openSUSE has updated pdns (Leap42.1: denial of service from 2015), subversion (Leap42.2: denial of service), and kernel (Leap42.2; Leap42.1: privilege escalation), kernel (13.1: three vulnerabilities).
SUSE has updated java-1_7_0-ibm (SOSC5, SMP2.1, SM2.1, SLE11-SP3,SP2: multiple vulnerabilities), java-1_8_0-ibm (SLE12-SP2,SP1: multiple vulnerabilities), firefox, nss (SOSC5, SMP2.1, SM2.1, SLE11-SP4,SP3: multiple vulnerabilities), kernel (SLE11-SP4: multiple vulnerabilities), tomcat (SLES12-SP2; SLES12-SP1: multiple vulnerabilities), and xen (SLE12-SP2; SLE12-SP1: multiple vulnerabilities).