CentOS has updated cups (code
execution), dbus-glib
(privilege escalation), and libxml2
(denial of service).
Debian has updated cfingerd
(code execution).
openSUSE has released a metric boatload of updates for various
closed-source packages: acroread (one and two; multiple vulnerabilities), flash-player (one, two, three, four, five, six, and seven; multiple vulnerabilities), and
opera (one, two,
three, and four; multiple vulnerabilities).
Oracle has updated bind (denial
of service), cups (code execution), ipa (denial
of service), kernel (privilege
escalation), kernel-uek (privilege escalation), libxml2 (denial of service), openchange
(code execution), and samba4 (code
execution).
Red Hat has updated cups (code
execution), libxml2 (denial of
service), and openshift (multiple vulnerabilities).
Scientific Linux has updated 389-ds-base
(information disclosure), automake (code execution), bind (denial of service), cups (code execution), dbus-glib (privilege escalation), dhcp (denial of service), dnsmasq (denial of service), gdb (code execution), httpd (multiple vulnerabilities), libvirt (denial of service), libxml2(denial of service), openssh (code execution), pam (multiple vulnerabilities), pcsc-lite (code execution), php (multiple vulnerabilities), pki-core (multiple cross-site-scripting
vulnerabilities), squid (denial of
service), and xinetd (firewall bypass).
SUSE has updated flash-player
(multiple vulnerabilities).
Ubuntu has updated firefox
(denial of service; regression) and openssl (denial of service; regression).