Security advisories for Monday

by
ris
from LWN.net on (#XP02)

Debian has updated bouncycastle (invalid curve attack) and libphp-phpmailer (header injection).

Debian-LTS has updated grub2 (code execution).

Fedora has updated grub2 (F23:code execution), LibRaw (F22: twovulnerabilities), moodle (F23; F22: multiple vulnerabilities), openssl (F22: multiple vulnerabilities), pax-utils (F22: multiple vulnerabilities), pcre (F22: denial of service), proftpd(F23; F22:denial of service), qemu (F23: denial ofservice), and wget (F22: information leak).

openSUSE has updated libpng12(13.2, 13.1: denial of service), libpng16(13.2, 13.1: denial of service), libraw(13.2, 13.1: unspecified), and mbedtls(Leap42.1: code execution).

Oracle has updated openssl (OL7; OL6: multiple vulnerabilities).

Red Hat has updated chromium-browser (RHEL6: multiplevulnerabilities), glibc (RHEL7.1: multiplevulnerabilities), libpng (RHEL6: multiplevulnerabilities), libreoffice (RHEL6,7:multiple vulnerabilities), openshift(RHOSE3: information leak), and openssl (RHEL6,7; RHEL5: multiple vulnerabilities).

SUSE has updated java-1_7_1-ibm(SLE12: many vulnerabilities) and java-1_8_0-ibm (SLE12: many vulnerabilities).

Ubuntu has updated libxml2 (multiple vulnerabilities).

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments