|
|
Пишет LWN.net (![[info]](http://lj.rossia.org/img/syndicated.gif){kind=small} syn_lwnheadline)@ 2014-08-08 12:51:00 |
 |
|
 |
|
|
|
|
|
|
 |
|
 |
CentOS has updated 389-ds-base: (C6, C7: information disclosure) and tomcat (C7: XML parser injection).
Fedora has updated ansible (F19, F20: code execution), bugzilla (F19: information disclosure), chicken (F19, F20: denial of service and possible code execution), dpkg (F19: multiple vulnerabilities), kernel (F19: general-principles update to 3.14.15), krb5 (F19, F20: multiple vulnerabilities), mosquitto (F19, F20: unknown vulnerability), openstack-keystone (F20: privilege escalation), pixman (F20: integer underflow), Samba (F20: remote code execution), trafficserver (F20: mysterious vulnerability), v8 (F20: denial of service), and wireshark (F20: more dissector vulnerabilities).
Mageia has updated drupal (multiple vulnerabilities), apache-mod_wsgi (denial of service), and php (three denial-of-service or "unspecified other impact" vulnerabilities).
Mandriva has updated ocsinventory (cross-site scripting), ipython (code execution), and openssl (multiple vulnerabilities).
openSUSE has updated apache (multiple vulnerabilities, with a mod_security filter bypass fix tossed in as well).
Oracle has updated 389-ds-base (OL6, OL7: information disclosure) and tomcat (OL7: XML parser injection).
Red Hat has updated 389-ds-base (RHEL6-7: information disclosure), java-1.5.0-ibm (RLEL5-6: seven "important" vulnerabilities), java-1.6.0-ibm (RHEL5-6: nine "critical" vulnerabilities), and tomcat (RHEL7: XML parser injection).
Scientific Linux has updated 389-ds-base (SL6: information disclosure).
Ubuntu has updated openssl (multiple vulnerabilities).
