Friday's security updates CentOS has updated java-1.7.0-openjdk (C6; C5; C7: multiple vulnerabilities) and java-1.8.0-openjdk (C6; C7: multiple vulnerabilities).
Debian has updated varnish
(access control bypass) and xen
(multiple vulnerabilities).
Fedora has updated drupal7-block_class (F23; F22:
cross-site scripting),
glpi (F23; F22: SQL injection), libtasn1 (F23: denial of service), and springframework-amqp (F22: code execution).
Mageia has updated chromium-browser-stable (M5: multiple vulnerabilities), imlib2 (M5: code execution), lha (M5: buffer overflow), and poppler (M5: denial of service).
Oracle has updated java-1.7.0-openjdk (O7; O6; O5: multiple vulnerabilities).
Red Hat has updated java-1.6.0-sun (RHEL 5,6,7: multiple vulnerabilities),
java-1.7.0-openjdk (RHEL 5,7; RHEL6: multiple vulnerabilities), java-1.7.0-oracle (RHEL 5,6,7: multiple vulnerabilities), and java-1.8.0-oracle (RHEL 6,7: multiple vulnerabilities).
Scientific Linux has updated java-1.7.0-openjdk (SL 5,7; SL6: multiple vulnerabilities).
Ubuntu has updated mysql-5.5,
mysql-5.6 (12.04, 14.04, 15.10: multiple vulnerabilities) and php5 (12.04, 14.04, 15.10: multiple vulnerabilities).