|
|
Пишет LWN.net (![[info]](http://lj.rossia.org/img/syndicated.gif){kind=small} syn_lwnheadline)@ 2015-12-14 17:33:00 |
 |
|
 |
|
|
|
|
|
|
 |
|
 |
Debian has updated bouncycastle (invalid curve attack) and libphp-phpmailer (header injection).
Debian-LTS has updated grub2 (code execution).
Fedora has updated grub2 (F23: code execution), LibRaw (F22: two vulnerabilities), moodle (F23; F22: multiple vulnerabilities), openssl (F22: multiple vulnerabilities), pax-utils (F22: multiple vulnerabilities), pcre (F22: denial of service), proftpd (F23; F22: denial of service), qemu (F23: denial of service), and wget (F22: information leak).
openSUSE has updated libpng12 (13.2, 13.1: denial of service), libpng16 (13.2, 13.1: denial of service), libraw (13.2, 13.1: unspecified), and mbedtls (Leap42.1: code execution).
Oracle has updated openssl (OL7; OL6: multiple vulnerabilities).
Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities), glibc (RHEL7.1: multiple vulnerabilities), libpng (RHEL6: multiple vulnerabilities), libreoffice (RHEL6,7: multiple vulnerabilities), openshift (RHOSE3: information leak), and openssl (RHEL6,7; RHEL5: multiple vulnerabilities).
SUSE has updated java-1_7_1-ibm (SLE12: many vulnerabilities) and java-1_8_0-ibm (SLE12: many vulnerabilities).
Ubuntu has updated libxml2 (multiple vulnerabilities).
