Friday's security updates

[Posted January 20, 2017 by jake]

[Security] Posted Jan 20, 2017 15:59 UTC (Fri) by jake

Arch Linux has updated php (three vulnerabilities), powerdns (MV), and powerdns-recursor (three vulnerabilities).

Debian has updated mysql-5.5 (multiple unspecified vulnerabilities).

Debian-LTS has updated libphp-swiftmailer (code execution).

Gentoo has updated curl (MV, two from 2014), cvs (code execution from 2012), icedtea-bin (MV), irssi (MV), and nss (MV, three from 2015).

openSUSE has updated pdns-recursor (42.2, 42.1: denial of service) and squid (42.1: two vulnerabilities, one from 2014).

Red Hat has updated java-1.8.0-openjdk (RHEL7&6: MV), openstack-cinder (OSP6.0 for RHEL7; OSP5.0 for RHEL7; OSP5.0 for RHEL6: denial of service from 2015), and python-XStatic-jquery-ui (OSP7.0 for RHEL7: cross-site scripting).

SUSE has updated gstreamer-0_10-plugins-good (SLE12SP2: MV).