Thursday's security updates Arch Linux has updated qemu (code
execution).
CentOS has updated firefox (C5:
multiple vulnerabilities), kernel (C7: code
execution), kvm (C5: code execution),
qemu-kvm (C7; C6: code execution), and xen (C5: code execution).
Debian has updated iceweasel
(multiple vulnerabilities) and qemu
(multiple vulnerabilities).
Debian-LTS has updated icu (multiple vulnerabilities
some from 2013).
Fedora has updated ca-certificates (F21: certificate changes), firefox (F21: multiple vulnerabilities), gnutls (F21: signature algorithm verification
botch), libssh (F21: denial of service),
and thunderbird (F21: two vulnerabilities).
Mageia has updated darktable
(denial of service), kernel-linus (three
vulnerabilities), kernel-tmb (multiple vulnerabilities), libraw (denial of service), qemu (code execution), rawtherapee (denial of service), ufraw and dcraw (denial of service), and wireshark (three dissector vulnerabilities).
Oracle has updated firefox (OL6:
multiple vulnerabilities), kvm (OL5: denial of service),
qemu-kvm (OL7; OL6: code execution), kernel (OL7; OL6; OL6; OL5: multiple vulnerabilities),
and xen (OL5: code execution).
Scientific Linux has updated firefox (SL7,SL6,SL5: multiple vulnerabilities), kernel (SL7: code execution), kexec-tools (SL7: arbitrary file overwrite),
pcs (SL7; SL6: privilege escalation), qemu-kvm
(SL7; SL6:
code execution), tomcat (SL7: HTTP request
smuggling), and tomcat6 (SL6: HTTP request smuggling).
SUSE has updated kvm (SLE11SP3:
denial of service).
Ubuntu has updated firefox (multiple vulnerabilities)
and qemu, qemu-kvm (three vulnerabilities).