Security advisories for Wednesday

by
ris
from LWN.net on (#1NNES)

CentOS has updated java-1.7.0-openjdk (C7; C6; C5: multiple vulnerabilities), samba (C7: crypto downgrade), and samba4 (C6: crypto downgrade).

Debian has updated libgd2 (denial of service), mariadb-10.0 (multiple vulnerabilities), and php5 (multiple vulnerabilities).

Debian-LTS has updated libgd2 (denial of service).

Mageia has updated apache (HTTPredirect), harfbuzz (multiplevulnerabilities), libgd (threevulnerabilities), libidn (multiplevulnerabilities), libupnp (unauthenticatedaccess), libxml2 (multiplevulnerabilities), mariadb (multiplevulnerabilities), mupdf (denial of service), php/xmlrpc-epi/timezone (multiple vulnerabilities), sudo (race condition), tomcat/apache-commons-fileupload (denial of service), and virtualbox (allows local users to affect availability).

Red Hat has updated java-1.7.0-openjdk (RHEL5,6,7: multiplevulnerabilities) and kernel (RHEL6.7:privilege escalation).

Scientific Linux has updated samba (SL7: crypto downgrade) and samba4 (SL6: crypto downgrade).

Ubuntu has updated kde4libs(15.10, 14.04, 16.04: command execution) and openjdk-8 (16.04: multiple vulnerabilities).

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments