Security advisories for Monday

Post Syndicated from ris original

Arch Linux has updated wireshark-cli (multiple vulnerabilities).

Debian has updated mupdf (two
denial of service flaws).

Debian-LTS has updated eog
(out-of-bounds write), quagga (two
vulnerabilities), ruby-actionpack-3.2
(multiple vulnerabilities), and ruby-activesupport-3.2 (denial of service).

Fedora has updated lcms2 (F24:
heap memory leak), uClibc (F24: code
execution), and webkitgtk4 (F24: multiple vulnerabilities).

openSUSE has updated Firefox
(13.1: buffer overflow), firefox, nss
(Leap42.1, 13.2: buffer overflow), phpMyAdmin (Leap42.1, 13.2; 13.1: multiple vulnerabilities), and typo3-cms-4_5 (Leap42.1, 13.2: three vulnerabilities).

Oracle has updated java-1.6.0-openjdk (OL7; OL6; OL5: multiple vulnerabilities) and kernel 4.1.12 (OL7; OL6: multiple vulnerabilities).