Tuesday's security updates

Fedora has updated curl (F17: heap corruption), moodle (F18; F19: multiple vulnerabilities), node-gyp (F18; F19: insecure tmp directory creation), nodejs-ansi (F18: insecure tmp directory creation), nodejs-asn1 (F18: insecure tmp directory creation), nodejs-aws-sign (F18: insecure tmp directory creation), nodejs-better-assert (F18: insecure tmp directory creation), nodejs-boom (F18: insecure tmp directory creation), nodejs-callsite (F18: insecure tmp directory creation), nodejs-child-process-close (F18: insecure tmp directory creation), nodejs-cmd-shim (F18: insecure tmp directory creation), nodejs-config-chain (F18: insecure tmp directory creation), nodejs-cookie-jar (F18: insecure tmp directory creation), nodejs-couch-login (F18: insecure tmp directory creation), nodejs-cryptiles (F18: insecure tmp directory creation), nodejs-ctype (F18: insecure tmp directory creation), nodejs-editor (F18: insecure tmp directory creation), nodejs-forever-agent (F18: insecure tmp directory creation), nodejs-form-data (F18: insecure tmp directory creation), nodejs-fstream (F18; F19: insecure tmp directory creation), nodejs-fstream-ignore (F18: insecure tmp directory creation), nodejs-fstream-npm (F18: insecure tmp directory creation), nodejs-github-url-from-git (F18: insecure tmp directory creation), nodejs-glob (F18: insecure tmp directory creation; F19: insecure tmp directory creation), nodejs-graceful-fs (F18; F19: insecure tmp directory creation), nodejs-hawk (F18: insecure tmp directory creation), nodejs-hoek (F18: insecure tmp directory creation), nodejs-http-signature (F18: insecure tmp directory creation), nodejs-inherits (F18: insecure tmp directory creation), nodejs-inherits1 (F18: insecure tmp directory creation), nodejs-init-package-json (F18: insecure tmp directory creation), nodejs-json-stringify-safe (F18: insecure tmp directory creation), nodejs-lockfile (F18; F19: insecure tmp directory creation), nodejs-normalize-package-data (F18: insecure tmp directory creation), nodejs-npm-registry-client (F18; F19: insecure tmp directory creation), nodejs-npm-user-validate (F18: insecure tmp directory creation), nodejs-npmconf (F18: insecure tmp directory creation), nodejs-npmlog (F18; F19: insecure tmp directory creation), nodejs-oauth-sign (F18: insecure tmp directory creation), nodejs-read-installed (F18: insecure tmp directory creation), nodejs-read-package-json (F18: insecure tmp directory creation), nodejs-request (F18: insecure tmp directory creation), nodejs-rimraf (F18: insecure tmp directory creation), nodejs-semver (F18; F19: insecure tmp directory creation), nodejs-sha (F18; F19: insecure tmp directory creation), nodejs-slide (F18: insecure tmp directory creation), nodejs-sntp (F18: insecure tmp directory creation), nodejs-tap (F18: insecure tmp directory creation), nodejs-tunnel-agent (F18: insecure tmp directory creation), nodejs-vows (F18: insecure tmp directory creation), npm (F18; F19: insecure tmp directory creation), php (F18; F17: code execution), and seamonkey (F19; F18; F17: multiple vulnerabilities).

Mandriva has updated mysql (multiple vulnerabilities).

openSUSE has updated lcms2 (multiple vulnerabilities) and nagstamon (information disclosure).

Oracle has updated php (OL4: code execution) and qemu-kvm (OL6: privilege escalation).

Red Hat has updated qemu-kvm (privilege escalation) and virtio-win (privilege escalation).

Scientific Linux has updated qemu-kvm (privilege escalation).

Ubuntu has updated openjdk-6 (multiple vulnerabilities).