Security advisories for Wednesday

Arch Linux has updated imlib2 (multiple vulnerabilities), jasper (multiple vulnerabilities), lib32-openssl (multiple vulnerabilities), and openssl (multiple vulnerabilities).

CentOS has updated kernel (C6: two vulnerabilities).

Debian has updated openssl (multiple vulnerabilities).

Debian-LTS has updated asterisk (multiple vulnerabilities), extplorer (cross-site scripting), minissdpd (denial of service), and openssl (multiple vulnerabilities).

Fedora has updated cacti (F23; F22: three vulnerabilities).

openSUSE has updated Chromium (SPH for SLE12; Leap42.1; 13.2: multiple vulnerabilities), giflib (Leap42.1: denial of service), java-1_7_0-openjdk (13.2: multiplevulnerabilities), java-1_8_0-openjdk (13.2:multiple vulnerabilities), jq (Leap42.1; 13.2: heap buffer overflow), libgcrypt (Leap42.1: key leak), firefox, nss (Leap42.1, 13.2: multiplevulnerabilities), wireshark (Leap42.1,13.2: multiple vulnerabilities), xerces-j2(13.2: denial of service), and yast2-users(Leap42.1: empty passwords fields in /etc/shadow).

Oracle has updated kernel (OL6: two vulnerabilities).

Red Hat has updated java-1.8.0-ibm (RHEL7: multiplevulnerabilities), jenkins (RHOSE3.1:multiple vulnerabilities), and kernel(RHEL6: two vulnerabilities).

Scientific Linux has updated kernel (SL6: two vulnerabilities).

Slackware has updated openssl (multiple vulnerabilities).

SUSE has updated openssl (SLE12:multiple vulnerabilities), openssl1(SLES11: multiple vulnerabilities), and kernel (SLE11-SP3, SOSC5, SMP2.1: multiple vulnerabilities).