Ubuntu Security Notice 2884-1 – Multiple vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. A vulnerability was discovered in the OpenJDK JRE related to data integrity. An attacker could exploit this to expose sensitive data over the network or possibly execute arbitrary code. Various other issues were also addressed.

Ubuntu Security Notice 2885-1 – Multiple vulnerabilities were discovered in the OpenJDK JRE related to information disclosure, data integrity, and availability. An attacker could exploit these to cause a denial of service, expose sensitive data over the network, or possibly execute arbitrary code. A vulnerability was discovered in the OpenJDK JRE related to data integrity. An attacker could exploit this to expose sensitive data over the network or possibly execute arbitrary code. Various other issues were also addressed.

Red Hat Security Advisory 2016-0097-01 – Redis is an advanced key-value store. It is often referred to as a data structure server because keys can contain strings, hashes, lists, sets, or sorted sets. An integer-wraparound flaw leading to a stack-based overflow was found in Redis. A user with access to run Lua code in a Redis session could possibly use this flaw to crash the server or gain code execution outside of the Lua sandbox. All users of redis are advised to upgrade to these updated packages, which correct this issue.

Red Hat Security Advisory 2016-0095-01 – Redis is an advanced key-value store. It is often referred to as a data structure server because keys can contain strings, hashes, lists, sets, or sorted sets. An integer-wraparound flaw leading to a stack-based overflow was found in Redis. A user with access to run Lua code in a Redis session could possibly use this flaw to crash the server or gain code execution outside of the Lua sandbox. All users of redis are advised to upgrade to these updated packages, which correct this issue.

Red Hat Security Advisory 2016-0096-01 – Redis is an advanced key-value store. It is often referred to as a data structure server because keys can contain strings, hashes, lists, sets, or sorted sets. An integer-wraparound flaw leading to a stack-based overflow was found in Redis. A user with access to run Lua code in a Redis session could possibly use this flaw to crash the server or gain code execution outside of the Lua sandbox. All users of redis are advised to upgrade to these updated packages, which correct this issue.

PHPSYSINFO versions 3.1.12 and below suffer from a local file disclosure vulnerability.

WPS Office versions prior to 2016 suffer from a .xls heap memory corruption vulnerability.

WPS Office versions prior to 2016 suffer from a .ppt drawingContainer length header handling issue that leads to memory corruption.

WPS Office versions prior to 2016 suffer from a .doc handling heap memory corruption issue when dealing with an invalid value in the OneTableDocumentStream data section.

WPS Office versions prior to 2016 suffer from a .ppt handling heap memory corruption vulnerability.