Post Syndicated from ris original http://lwn.net/Articles/695555/rss
CentOS has updated java-1.7.0-openjdk (C7; C6; C5: multiple vulnerabilities), samba (C7: crypto downgrade), and samba4 (C6: crypto downgrade).
Debian has updated libgd2 (denial of service), mariadb-10.0 (multiple vulnerabilities), and php5 (multiple vulnerabilities).
Debian-LTS has updated libgd2 (denial of service).
Mageia has updated apache (HTTP
redirect), harfbuzz (multiple
vulnerabilities), libgd (three
vulnerabilities), libidn (multiple
vulnerabilities), libupnp (unauthenticated
access), libxml2 (multiple
vulnerabilities), mariadb (multiple
vulnerabilities), mupdf (denial of service), php/xmlrpc-epi/timezone (multiple vulnerabilities), sudo (race condition), tomcat/apache-commons-fileupload (denial of service), and virtualbox (allows local users to affect availability).
Red Hat has updated java-1.7.0-openjdk (RHEL5,6,7: multiple
vulnerabilities) and kernel (RHEL6.7:
privilege escalation).
Scientific Linux has updated samba (SL7: crypto downgrade) and samba4 (SL6: crypto downgrade).
Ubuntu has updated kde4libs
(15.10, 14.04, 16.04: command execution) and openjdk-8 (16.04: multiple vulnerabilities).