Thursday's security updates CentOS has updated glibc (C6: multiple vulnerabilities).
Fedora has updated mpfr (F20; F21:
buffer overflow),
nss (F20: information leak), nss-softokn (F20: information leak), nss-util (F20: information leak), openvas-cli (F21: SQL injection), openvas-manager (F21: SQL injection), openvas-scanner (F21: SQL injection), tcpdump (F21: code execution), and thermostat (F20; F21:
privilege escalation).
Mageia has updated apache
(M4: access-restriction bypass), asterisk (M4: denial of service), ettercap (M4: multiple vulnerabilities), glibc (M4: multiple vulnerabilities), libsndfile (M4: multiple vulnerabilities), and libssh (M4: denial of service).
Mandriva has updated mediawiki (BS1: multiple vulnerabilities).
openSUSE has updated libssh
(denial of service) and php5 (11.4: multiple vulnerabilities).
Oracle has updated glibc (O6: multiple vulnerabilities).
Red Hat has updated glibc (RHEL6: multiple vulnerabilities).
Scientific Linux has updated glibc (SL6: multiple vulnerabilities).
Ubuntu has updated bsd-mailx
(code execution), exiv2 (14.10: denial
of service), mime-support (code execution), and nss (information disclosure).