Security advisories for Monday

Post Syndicated from ris original

Arch Linux has chromium (multiple vulnerabilities), jansson (denial of service), lib32-libgcrypt (flawed random number generation), and php (multiple vulnerabilities).

Debian-LTS has updated curl (
execution), jackrabbit (cross-site request
forgery), pdns (multiple denial of service flaws), php5 (multiple vulnerabilities), phpmyadmin (multiple vulnerabilities), and zookeeper (buffer overflow).

Fedora has updated chromium (F24:
multiple vulnerabilities), distribution-gpg-keys (F24: privilege
escalation), GraphicsMagick (F23: multiple
vulnerabilities), jasper (F24: denial of
service), mingw-openjpeg2 (F24; F23: out-of-bounds write), mock (F24: ), moin (F24: unspecified vulnerability from
), openjpeg2 (F23: out-of-bounds write), and -adodb (F24; F23: cross-site ).

SUSE has updated php53
(SLES11-SP2: multiple vulnerabilities).