|
|
Subscribe / Log in / New account

Security updates for Friday

[Posted December 30, 2016 by jake]

Security updates for Friday

[Security] Posted Dec 30, 2016 16:11 UTC (Fri) by jake

Debian has updated dcmtk (code execution from 2015).

Debian-LTS has updated curl (code execution) and libxi (regression in previous update).

Fedora has updated js-jquery (F24: cross-site scripting), js-jquery1 (F25; F24: cross-site scripting), smack (F25: TLS bypass), and tracker (F24: adding sandboxing).

Gentoo has updated mod_wsgi (privilege escalation from 2014).

Mageia has updated game-music-emu (multiple vulnerabilities), gstreamer1.0-plugins-good (multiple vulnerabilities), hdf5 (multiple vulnerabilities), kernel, kmod (three vulnerabilities), libgsf (denial of service), openjpeg2 (multiple vulnerabilities), roundcubemail (code execution), and samba (authentication bypass).

openSUSE has updated irc-otr (42.2: information disclosure).

Slackware has updated python (two vulnerabilities) and samba (three vulnerabilities).

SUSE has updated gstreamer-plugins-bad (SLE12: multiple vulnerabilities) and gstreamer-plugins-good (SLE12: multiple vulnerabilities).

Comments (none posted)


Copyright © 2016, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds