|
|
Пишет LWN.net (![[info]](http://lj.rossia.org/img/syndicated.gif){kind=small} syn_lwnheadline)@ 2016-12-13 18:06:00 |
 |
|
 |
|
|
|
|
|
|
 |
|
 |
Debian has updated php5 (multiple vulnerabilities).
Debian-LTS has updated monit (regression in previous update) and unzip (buffer overflows).
Fedora has updated golang (F25; F24: denial of service), kernel (F25; F24; F23: three vulnerabilities), perl-DBD-MySQL (F25: two vulnerabilities), php-simplesamlphp-saml2 (F25; F24; F23: incorrect signature verification), php-simplesamlphp-saml2_1 (F25; F24; F23: incorrect signature verification), and python-tornado (F24: XSRF protection bypass).
Gentoo has updated SQUASHFS (two code execution flaws from 2012), bash (code execution), botan (two vulnerabilities), elfutils (code execution from 2014), ghostscript-gpl (buffer overflow from 2015), nodejs (multiple vulnerabilities), pixman (code execution), systemd (multiple vulnerabilities from 2013), tigervnc (two vulnerabilities from 2014), webkit-gtk (many vulnerabilities, some from 2014 and 2015), xstream (code execution from 2013), and zabbix (two vulnerabilities).
openSUSE has updated Chromium (multiple vulnerabilities), ImageMagick (Leap42.2; Leap42.1: two vulnerabilities), java-1_7_0-openjdk (Leap42.2, 42.1: multiple vulnerabilities), libass (Leap42.1, 13.2: two vulnerabilities), libgit2 (Leap42.2: two vulnerabilities), pacemaker (Leap42.1: two vulnerabilities), pcre (Leap42.2, 42.1: multiple vulnerabilities, some from 2014 and 2015), perl-DBD-mysql (13.2: use after free), php5 (Leap42.2, 42.1: two vulnerabilities), php7 (Leap42.2: two vulnerabilities), qemu (Leap42.1: multiple vulnerabilities), and util-linux (Leap42.2: denial of service).
Oracle has updated kernel 3.8.13 (OL7; OL6: two vulnerabilities), and kernel 2.6.39 (OL6; OL5: denial of service).
Slackware has updated kernel (privilege escalation), loudmouth (roster push attack), and php (multiple vulnerabilities).
SUSE has updated firefox, nss (SLE11-SP2: multiple vulnerabilities).
