Security updates for Tuesday

CentOS has updated openssl (C7; C6: two vulnerabilities).

Debian-LTS has updated gtk-vnc (two vulnerabilities).

Fedora has updated kernel (F25; F24: twovulnerabilities), mingw-gstreamer1 (F25:denial of service), mingw-gstreamer1-plugins-bad-free (F25: twovulnerabilities), mingw-gstreamer1-plugins-base (F25: multiplevulnerabilities), mingw-gstreamer1-plugins-good (F25: multiplevulnerabilities), mingw-wavpack (F25; F24:multiple vulnerabilities), and xen (F25: denial of service).

Gentoo has updated adobe-flash(multiple vulnerabilities), dropbear(multiple vulnerabilities), firefox(multiple vulnerabilities), libass(multiple vulnerabilities), libvncserver(two vulnerabilities), mariadb (multiplevulnerabilities), mysql (multiplevulnerabilities), nagios-core (multiplevulnerabilities, one from 2008), ocaml(information leak), opus (code execution),php (multiple vulnerabilities), pycrypto (denial of service), qemu (multiple vulnerabilities), redis (three vulnerabilities), tcpdump (multiple vulnerabilities), thunderbird (multiple vulnerabilities), tigervnc (code execution), and xen (code execution).

Mageia has updated ruby-archive-tar-minitar (file overwrites).

openSUSE has updated libplist(42.1: multiple vulnerabilities) and nodejs(42.1: three vulnerabilities).

Oracle has updated openssl (OL7; OL6: two vulnerabilities).

SUSE has updated flash-player(SLE12-SP1: multiple vulnerabilities).

Ubuntu has updated gtk-vnc(14.04, 12.04: two vulnerabilities), spice(16.10, 16.04, 14.04: two vulnerabilities), and tomcat6, tomcat7 (14.04, 12.04: denial of service).