Thursday's security updates

CentOS has updated foomatic (C6:three vulnerabilities, one from 2010), git (C7; C6: twocode execution flaws), kernel (C6: twovulnerabilities), krb5 (C6: twovulnerabilities), and tomcat6 (C6: SecurityManager bypass from 2014).

Debian has updated inspircd(denial of service), pidgin-otr (?:), andredmine (multiple unspecified informationdisclosure flaws).

Fedora has updated dropbear (F23; F22:information disclosure), kernel (F22; F23:three vulnerabilities), putty (F23; F22: code execution), and qemu (F23: multiple vulnerabilities).

openSUSE has updated dropbear(42.1, 13.2: information disclosure), graphite2 (42.1: three vulnerabilities), libssh (13.2: insecure sessions), perl (13.2: two vulnerabilities), pidgin-otr (42.1, 13.2: code execution), quagga (13.2: code execution), samba (42.1: ACL bypass), thunderbird (42.1, 13.2: multiplevulnerabilities), and tomcat (42.1:multiple vulnerabilities).

Oracle has updated git (OL7;OL6: two code execution flaws) andkernel 3.8.13 (OL7; OL6: two vulnerabilities).

Red Hat has updated python-django (RHOSP7OT for RHEL7; RHOSP7 for RHEL7; RHOSP6 for RHEL7; RHOSP5 forRHEL7; RHOSP5 forRHEL6: two vulnerabilities).

SUSE has updated rubygem-actionview-4_2 (OSC6, ES2.1: codeexecution) and xen (SLE12SP1: manyvulnerabilities, some from 2014 and 2013).

Ubuntu has updated quagga (twovulnerabilities, one from 2013) and tiff(multiple vulnerabilities).