Security advisories for Wednesday

Arch Linux has updated glibc (multiple vulnerabilities).

CentOS has updated 389-ds-base(C7: denial of service), firefox (C7; C6; C5: three vulnerabilities), glibc (C7: two vulnerabilities), glibc (C6: code execution), kernel (C7: two vulnerabilities), polkit (C7: privilege escalation), and sos (C7: information disclosure).

Debian-LTS has updated eglibc(two vulnerabilities), gtk+2.0 (code execution), and wordpress (two vulnerabilities).

Fedora has updated asterisk (F23; F22: filedescriptor exhaustion), ecryptfs-utils (F23; F22:privilege escalation), firefox (F22:multiple vulnerabilities), glibc (F23: codeexecution), glibc (F22: multiplevulnerabilities), mingw-curl (F23;F22: authentication bypass),mingw-libpng (F23; F22: denial of service), mingw-libxml2(F23; F22:multiple vulnerabilities), mingw-pcre (F23; F22:multiple vulnerabilities), nghttp2 (F23:denial of service), and springframework-social (F23: cross-site request forgery).

Gentoo has updated glibc (multiple vulnerabilities).

openSUSE has updated Chromium(SPH for SLE12: multiple vulnerabilities), claws-mail (Leap42.1, 13.2; 13.1: code execution), firefox (Leap42.1, 13.2: same-originrestriction bypass), glibc (Leap42.1:multiple vulnerabilities), libnettle (Leap42.1; 13.2; 13.1:improper cryptographic calculations), socat (Leap42.1, 13.2; 13.1: cipher-downgrade attacks), thunderbird (Leap42.1, 13.2: code execution),thunderbird (13.1: multiplevulnerabilities), and vlc (Leap42.1: code execution).

Oracle has updated 389-ds-base(OL7: denial of service), firefox (OL7; OL6; OL5: three vulnerabilities), glibc (OL7: two vulnerabilities), glibc (OL6: code execution), kernel (OL7: multiple vulnerabilities), polkit (OL7: privilege escalation), and sos (OL7: information disclosure).

Red Hat has updated chromium-browser (RHEL6: multiplevulnerabilities), glibc (RHEL6.2, 6.4, 6.5,6.6, 7.1: code execution), glibc (RHEL7:two vulnerabilities), glibc (RHEL6: codeexecution), and kernel-rt (RHEMRG2.5: two vulnerabilities).

Scientific Linux has updated 389-ds-base (SL7: denial of service), firefox (SL5,6,7: three vulnerabilities), glibc (SL7: two vulnerabilities), glibc (SL6: code execution), kernel (SL7: two vulnerabilities), polkit (SL7: privilege escalation), and sos (SL7: information disclosure).

SUSE has updated glibc (SLE12-SP1; SLE12; SLE11-SP3,SP4; SLE11-SP2: multiple vulnerabilities).

Ubuntu has updated eglibc, glibc(code execution), graphite2 (15.10, 14.04:multiple vulnerabilities), libreoffice(code execution), and xdelta3 (15.10,14.04: code execution).