Fedora has updated kernel (F19: off by one error), libvirt (F18: multiple vulnerabilities), and xpdf (F18; F19: code execution).

openSUSE has updated glibc (12.3: multiple vulnerabilities) and icedtea-web (12.x; 11.4: code execution).

Red Hat has updated ccid (RHEL5: code execution), kernel (RHEL5: denial of service), php53 (RHEL5: multiple vulnerabilities), samba3x (RHEL5: multiple vulnerabilities), sssd (RHEL5: file modification), sudo (RHEL5: privilege escalation), and xinetd (RHEL5: service disclosure flaw).

Ubuntu has updated EC2 kernel (10.04 LTS: multiple vulnerabilities), hplip (12.10; 12.04 LTS; 10.04 LTS: multiple vulnerabilities), kernel (10.04 LTS: multiple vulnerabilities), libkdcraw (12.04 LTS: denial of service), python2.6 (10.04 LTS: man in the middle attack), python2.7 (13.04; 12.10; 12.04 LTS: multiple vulnerabilities), python3.2 (12.10; 12.04 LTS: multiple vulnerabilities), txt2man (13.04; 12.10; 12.04 LTS: file overwrite), and vino (13.04; 12.10; 12.04 LTS: denial of service).

Debian has updated linux-2.6 (multiple vulnerabilities) and proftpd-dfsg (denial of service).

Fedora has updated chicken (F19: code execution), filezilla (F18: multiple vulnerabilities), firefox (F18: multiple vulnerabilities), glibc (F19: multiple vulnerabilities), livecd-tools (F18: improper handling of passwords), python-djblets (F19: multiple vulnerabilities), ReviewBoard (F19: multiple vulnerabilities), seamonkey (F19: multiple vulnerabilities), wireshark (F19: multiple vulnerabilities), xulrunner (F18: multiple vulnerabilities), and zabbix (F19: man-in-the-middle attacks).

Gentoo has updated firefox (multiple vulnerabilities) and xen (multiple vulnerabilities).

Mandriva has updated davfs2 (privilege escalation).

openSUSE has updated Mozilla (11.4: multiple vulnerabilities).

Oracle has updated kernel: OL5: multiple vulnerabilities).

Slackware has updated seamonkey (multiple vulnerabilities).

SUSE has updated firefox (SLE11 SP3: multiple vulnerabilities).

CentOS has updated kernel (multiple vulnerabilities).

Debian has updated davfs2 (privilege escalation).

Fedora has updated nas (F18, F19: multiple vulnerabilities), spice-gtk (F19: privilege escalation), and wordpress (F18: multiple vulnerabilities).

Gentoo has updated dropbear (multiple vulnerabilities), klibc (code execution), and squid (multiple vulnerabilities).

Mandriva has updated polkit (privilege escalation).

openSUSE has updated gpg2 (information disclosure), firefox (multiple vulnerabilities), python-django (denial of service), seamonkey (multiple vulnerabilities), thunderbird (multiple vulnerabilities), and xulrunner17 (multiple vulnerabilities).

Red Hat has updated kernel (multiple vulnerabilities).

Scientific Linux has updated kernel (SL5; multiple vulnerabilities).

Ubuntu has updated kernel (12.04, 12.10, 13.04: multiple vulnerabilities), linux-lts-quantal (multiple vulnerabilities), linux-lts-raring (multiple vulnerabilities), and linux-ti-omap4 (12.04, 12.10, 13.04: multiple vulnerabilities).

Peter Liljenberg has developed an add-on for Firefox that copies linked metadata to the clipboard in addition to the "copied" object itself. The initial demonstration of this technique required a specially-crafted page with RDFs metadata linked in, and thus may not seem immediately useful. However, Liljenberg has now implemented a more straightforward use case: copying and pasting an image with attribution data automatically preserved. "The friction for using a shared image is reduced when you don’t have to remember to also write an attribution. The attribution can embed the metadata, so that if someone copies the image from your page, they can also get an attribution created automatically when they paste it into their page."

Debian has updated libvirt (denial of service).

Fedora has updated lightdm (F18; information disclosure), rtkit (F19; privilege escalation), and wordpress (F19; multiple vulnerabilities).

Gentoo has updated libvirt (multiple vulnerabilities), monkeyd (multiple vulnerabilities), and tpp (code execution).

Mandriva has updated kernel (multiple vulnerabilities).

Red Hat has updated openstack-keystone (incorrect token revocation).

CentOS has updated rtkit (C6: authorization bypass).

Debian has updated pyopenssl (certificate spoofing).

Fedora has updated python-django (F19: multiple vulnerabilities) and python-django14 (F19: multiple vulnerabilities).

Gentoo has updated chromium (multiple vulnerabilities), libzrtpcpp (multiple vulnerabilities), moinmoin (multiple vulnerabilities), and proftpd (multiple vulnerabilities).

Mageia has updated libtiff (multiple vulnerabilities), perl-Crypt-DSA (improperly secure randomness), and polarssl (multiple vulnerabilities).

Mandriva has updated glpi (multiple vulnerabilities) and perl-Crypt-DSA (improperly secure randomness).

openSUSE has updated subversion (11.4: privilege escalation), tiff (11.4: multiple code execution flaws), and wireshark (11.4: multiple vulnerabilities).

Oracle has updated rtkit (OL6: authorization bypass).

Red Hat has updated puppet (RHOS3: multiple vulnerabilities), rtkit (RHEL6: authorization bypass), and ruby193-puppet (RHOS3: multiple vulnerabilities).

Scientific Linux has updated rtkit (SL6: authorization bypass).

Ubuntu has updated python-django (multiple vulnerabilities) and samba (denial of service).

Version 1.2 of the GStreamer multimedia framework has been released. Packages for GStreamer Core and GStreamer Plugins are available. The 1.2 release is API- and ABI-backwards-compatible with GStreamer 1.0, however there are several new features introduced. Several new plugins are included, including support for DASH adaptive streaming, JPEG2000 images, VP9 and Daala video, and decoding-only support for WebP. There is also a new command-line playback tool called gst-play-1.0 (designed for testing purposes), as well as numerous bugfixes and improvements.

Debian has updated icedove (multiple vulnerabilities).

Fedora has updated proftpd (F18; F19: denial of service).

Gentoo has updated apache (multiple vulnerabilities) and subversion (multiple vulnerabilities).

openSUSE has updated tiff (multiple vulnerabilities) and wireshark (multiple vulnerabilities).

Ubuntu has updated libraw (denial of service) and pyopenssl (certificate spoofing).