Gentoo Linux Security Advisory 201510-4 – Multiple vulnerabilities have been found in tcpdump, the worst of which can allow remote attackers to cause Denial of Service condition or executive arbitrary code. Versions less than 4.7.4 are affected.

Gentoo Linux Security Advisory 201510-5 – Multiple vulnerabilities have been found in MediaWiki, the worst of which may allow remote attackers to cause a Denial of Service. Versions less than 1.25.2 are affected.

Gentoo Linux Security Advisory 201510-6 – Multiple vulnerabilities have been found in Django, the worst of which may allow a remote attacker to cause Denial of Service. Versions less than 1.8.3 are affected.

Gentoo Linux Security Advisory 201510-7 – Multiple vulnerabilities have been found in CUPS, the worst of which could lead to arbitrary code execution. Versions less than 2.0.3 are affected.

Debian Linux Security Advisory 3386-1 – Two vulnerabilities have been found in unzip, a de-archiver for .zip files.

Debian Linux Security Advisory 3387-1 – John Stumpo discovered that OpenAFS, a distributed file system, does not fully initialize certain network packets before transmitting them. This can lead to a disclosure of the plaintext of previously processed packets.

Debian Linux Security Advisory 3388-1 – Several vulnerabilities were discovered in the Network Time Protocol daemon and utility programs.

Debian Linux Security Advisory 3381-2 – Several vulnerabilities have been discovered in OpenJDK, an implementation of the Oracle Java platform, resulting in the execution of arbitrary code, breakouts of the Java sandbox, information disclosure, or denial of service.

Debian Linux Security Advisory 3385-1 – Several issues have been discovered in the MariaDB database server. The vulnerabilities are addressed by upgrading MariaDB to the new upstream version 10.0.22.

Several functions within the imageop module are vulnerable to exploitable buffer overflows due to unsafe arithmetic in check_multiply_size(). The problem exists because the check to confirm that size == product / y / x does not take remainders into account.