Security updates for Tuesday

Debian-LTS has updated openjdk-6 (multiple vulnerabilities).

Fedora has updated libsndfile (F22; F21:buffer overflow), mingw-freeimage (F23; F22:integer overflow), rpm (F23: denial ofservice), wpa_supplicant (F21: denial ofservice), and zarafa (F21: twovulnerabilities, one from 2012).

Oracle has updated autofs (OL7:privilege escalation), binutils (OL7:multiple vulnerabilities), chrony (OL7:multiple vulnerabilities), cpio (OL7:denial of service), cups-filters (OL7:multiple vulnerabilities), curl (OL7:multiple vulnerabilities), file (OL7:multiple vulnerabilities), grep (OL7: heapbuffer overrun), grub2 (OL7: Secure Bootcircumvention), krb5 (OL7: twovulnerabilities), libreport (OL6: dataleak), libssh2 (OL7: information leak), net-snmp (OL7: denial of service), netcf (OL7: denial of service), ntp (OL7: multiple vulnerabilities), openhpi (OL7: world writable /var/lib/openhpidirectory), openldap (OL7: unintendedcipher usage), openssh (OL7: twovulnerabilities), python (OL7: multiplevulnerabilities), rest (OL7: denial ofservice), rubygem-bundler and rubygem-thor(OL7: installs malicious gem files), squid(OL7: certificate validation bypass), unbound (OL7: denial of service), wireshark (OL7: multiple vulnerabilities), andxfsprogs (OL7: information disclosure).

Scientific Linux has updated libreport (SL6: data leak).

SUSE has updated firefox(SLES10SP4: multiple vulnerabilities).