Article 2AV6K Security advisories for Monday

Security advisories for Monday

by
ris
from LWN.net on (#2AV6K)

Arch Linux has updated chromium (multiple vulnerabilities), firefox (multiple vulnerabilities), kernel (privilege escalation), lib32-openssl (three vulnerabilities), libimobiledevice (access restriction bypass), linux-lts (privilege escalation), linux-zen (privilege escalation), openssl (three vulnerabilities), and thunderbird (multiple vulnerabilities).

Debian has updated lcms2 (heap memory leak), openssl (three vulnerabilities), and tcpdump (multiple vulnerabilities).

Debian-LTS has updated bind9 (three denial of service flaws), imagemagick (multiple vulnerabilities), libgd2 (three vulnerabilities), tiff3 (invalid tiff files), and zoneminder (information leak, authentication bypass).

Fedora has updated fedmsg (F24:insufficient signature validation), firefox(F24: multiple vulnerabilities), flatpak(F25: sandbox escape), ghostscript (F25; F24:denial of service), ikiwiki (F25; F24: three vulnerabilities), libXpm (F24: code execution), mapserver (F25; F24: code execution), and pdns (F25; F24: multiple vulnerabilities).

Gentoo has updated a2ps (codeexecution from 2014), ark (code execution),chromium (multiple vulnerabilities), ffmpeg (multiple vulnerabilities), firewalld (authentication bypass), freeimage (two vulnerabilities, one from2015), libpng (NULL dereference bug), libXpm (code execution), perl (multiple vulnerabilities, two from2015), and squashfs-tools (twovulnerabilities from 2015).

Mageia has updated 389-ds-base(denial of service), libvncserver (twovulnerabilities), mbedtls (twovulnerabilities), nvidia-current,ldetect-lst (three vulnerabilities), opus (code execution), pcsc-lite (privilege escalation), python-bottle (CRLF attacks), and shadow-utils (two vulnerabilities).

openSUSE has updated gstreamer-0_10-plugins-base (42.1: codeexecution), gstreamer-plugins-base (42.2:code execution), and rabbitmq-server (42.2:authentication bypass).

SUSE has updated gnutls(SLE11-SP4: multiple vulnerabilities).

Ubuntu has updated firefox (multiple vulnerabilities) and thunderbird (multiple vulnerabilities).

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments