Security advisories for Monday

Debian-LTS has updated konversation (information disclosure), libarchive (directory traversal), and redcloth (cross-site scripting).

Fedora has updated cabextract (F21; F20: privilege escalation), kernel (F21: denial of service), krb5 (F20: multiple vulnerabilities), lftp (F20: automatically accepting ssh keys), libpng10 (F21; F20: two vulnerabilities), and qt3 (F21; F20: denial of service).

Gentoo has updated dbus (denial of service), freetype (multiple vulnerabilities), glibc (multiple vulnerabilities), and php (multiple vulnerabilities).

Mageia has updated apache (denial of service), jython (code execution), librsvg (multiple vulnerabilities), mapserver (command execution), and putty, filezilla (information disclosure).

Mandriva has updated rpm (code execution).

openSUSE has updated libmspack (13.2, 13.1: denial of service), thunderbird (13.2, 13.1: multiple vulnerabilities), and tiff (13.2, 13.1: multiple vulnerabilities).

SUSE has updated firefox (SLE11 SP3; SLE11 SP2,SP1, SLES10 SP4: multiple vulnerabilities).

Ubuntu has updated icu (12.04: regression in previous update).