Gentoo Linux Security Advisory 201504-3 – Multiple vulnerabilities have been found in Apache HTTP Server, the worst of which could lead to arbitrary code execution. Versions less than 2.2.29 are affected.

Gentoo Linux Security Advisory 201504-4 – Multiple vulnerabilities have been found in Xen, the worst of which can allow remote attackers to cause a Denial of Service condition. Versions less than 4.4.2-r1 are affected.

Gentoo Linux Security Advisory 201504-5 – Multiple vulnerabilities have been found in MySQL and MariaDB, the worst of which can allow remote attackers to cause a Denial of Service condition. Versions less than 5.6.22 are affected.

Debian Linux Security Advisory 3220-1 – Hanno Boeck discovered a stack-based buffer overflow in the asn1_der_decoding function in Libtasn1, a library to manage ASN.1 structures. A remote attacker could take advantage of this flaw to cause an application using the Libtasn1 library to crash, or potentially to execute arbitrary code.

Debian Linux Security Advisory 3221-1 – Adam Sampson discovered a buffer overflow in the handling of the XAUTHORITY environment variable in das-watchdog, a watchdog daemon to ensure a realtime process won’t hang the machine. A local user can exploit this flaw to escalate his privileges and execute arbitrary code as root.

Debian Linux Security Advisory 3222-1 – Miroslav Lichvar of Red Hat discovered multiple vulnerabilities in chrony, an alternative NTP client and server.

Gentoo Linux Security Advisory 201504-2 – A vulnerability in sudo could allow a local attacker to read arbitrary files or bypass security restrictions. Versions less than 1.8.12 are affected.

Debian Linux Security Advisory 3223-1 – Multiple vulnerabilities were discovered in ntp, an implementation of the Network Time Protocol.