Thursday's security updates

Arch Linux has updated qemu (codeexecution).

CentOS has updated firefox (C5:multiple vulnerabilities), kernel (C7: codeexecution), kvm (C5: code execution),qemu-kvm (C7; C6: code execution), and xen (C5: code execution).

Debian has updated iceweasel(multiple vulnerabilities) and qemu(multiple vulnerabilities).

Debian-LTS has updated icu (multiple vulnerabilitiessome from 2013).

Fedora has updated ca-certificates (F21: certificate changes), firefox (F21: multiple vulnerabilities), gnutls (F21: signature algorithm verificationbotch), libssh (F21: denial of service),and thunderbird (F21: two vulnerabilities).

Mageia has updated darktable(denial of service), kernel-linus (threevulnerabilities), kernel-tmb (multiple vulnerabilities), libraw (denial of service), qemu (code execution), rawtherapee (denial of service), ufraw and dcraw (denial of service), and wireshark (three dissector vulnerabilities).

Oracle has updated firefox (OL6:multiple vulnerabilities), kvm (OL5: denial of service),qemu-kvm (OL7; OL6: code execution), kernel (OL7; OL6; OL6; OL5: multiple vulnerabilities),and xen (OL5: code execution).

Scientific Linux has updated firefox (SL7,SL6,SL5: multiple vulnerabilities), kernel (SL7: code execution), kexec-tools (SL7: arbitrary file overwrite),pcs (SL7; SL6: privilege escalation), qemu-kvm(SL7; SL6:code execution), tomcat (SL7: HTTP requestsmuggling), and tomcat6 (SL6: HTTP request smuggling).

SUSE has updated kvm (SLE11SP3:denial of service).

Ubuntu has updated firefox (multiple vulnerabilities)and qemu, qemu-kvm (three vulnerabilities).