Security advisories for Monday

by
ris
from LWN.net on (#22FC0)

Arch Linux has updated drupal (multiple vulnerabilities), php (multiple vulnerabilities), slock (screen locking bypass), and w3m (multiple vulnerabilities).

CentOS has updated 389-ds-base(C6: multiple vulnerabilities), firefox (C6; C5:multiple vulnerabilities), java-1.7.0-openjdk (C5: multiplevulnerabilities), kernel (C6: twovulnerabilities), nss (C6; C5: multiple vulnerabilities), nss-util (C6: multiple vulnerabilities), andpolicycoreutils (C6: sandbox escape).

Debian has updated wireshark (multiple vulnerabilities).

Debian-LTS has updated drupal7 (multiple vulnerabilities), gst-plugins-bad0.10 (multiple vulnerabilities), sniffit (privilege escalation), and wireshark (multiple vulnerabilities).

Fedora has updated 389-ds-base(F25: information leak), ansible (F25: twovulnerabilities), bind (F25: denial ofservice), bind99 (F25: denial of service),chromium (F25; F23: multiple vulnerabilities), chromium-native_client (F25: multiplevulnerabilities), curl (F25: multiplevulnerabilities), docker (F25; F25: access bypass), dracut (F25: information disclosure),firefox (F25 (v49.02); F25 (V50.0); F23: multiple vulnerabilities), ghostscript (F25: two vulnerabilities), icu (F25: code execution), java-1.8.0-openjdk-aarch32 (F25: multiplevulnerabilities), kernel (F25;F24: denial of service), libgit2 (F25: unspecified), libwebp (F25: integer overflows), mingw-gnutls (F25: information leak), mingw-libwebp (F25: integer overflows), mingw-nettle (F25: information leak), moodle (F25: multiple vulnerabilities),python-cryptography (F25; F24; F23: badkey generation), python-django (F25: twovulnerabilities), quagga (F25: multiplevulnerabilities), sudo (F25: privilegeescalation), tomcat (F25: multiplevulnerabilities), tre (F25: codeexecution), and xen (F25: multiplevulnerabilities) (Note: Fedora 25 will be released tomorrow).

Gentoo has updated imlib2(multiple vulnerabilities), mit-krb5 (multiple vulnerabilities), mongodb (denial of service), and qemu (multiple vulnerabilities).

openSUSE has updated java-1_8_0-openjdk (13.2: multiplevulnerabilities), firefox, nss (Leap42.2,Leap42.1, 13.2: multiple vulnerabilities), and php5 (13.2: use after free).

Oracle has updated kernel 4.1.12 (OL7; OL6:multiple vulnerabilities), kernel 3.8.13 (OL7; OL6:multiple vulnerabilities), kernel 2.6.39 (OL6; OL5: multiple vulnerabilities).

Red Hat has updated ipsilon(RHEL7: information leak/denial of service).

Slackware has updated firefox (multiple vulnerabilities).

Ubuntu has updated firefox (multiple vulnerabilities) and imagemagick (multiple vulnerabilities).

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments