From: Apple Product Security
Reply to list
APPLE-SA-2016-06-20-2 OS X: Flash Player plug-in blocked Due to security issues in older versions, Apple has updated the web plug-in blocking mechanism to disable all versions prior to Flash Player 22.0.0.192 and 18.0.0.360. Information on blocked web plug-ins will be posted to: http://support. [...]
sNews CMS v1.7.1 Remote Command Execution / CSRF / XSS
[SECURITY] [DSA 3605-1] libxslt security update
Symphony CMS v2.6.7 Session Fixation
Red Hat Enterprise Linux: An update for chromium-browser is now available for Red Hat Enterprise Linux 6
Supplementary.
Red Hat Product Security has rated this update as having a security impact of
Important. A Common Vulnerability Scoring System (CVSS) base score, which gives
a detailed severity rating, is available for each vulnerability from the CVE
link(s) in the References section.
CVE-2016-1704
Red Hat Enterprise Linux: Updated libvirt packages that fix one bug are now available for Red Hat
Enterprise Linux 6 Advanced Update Support.
Red Hat Enterprise Linux: Updated Installation utility packages that resolve various issues are now
available for Red Hat Enterprise Linux OpenStack Platform 6.0 (Juno) for
RHEL 7.
20th June, 2016
A security issue affects these releases of Ubuntu and its
derivatives:
Dnsmasq could be made to crash if it received specially crafted network
traffic.
Edwin Török discovered that Dnsmasq incorrectly handled certain CNAME
responses. A remote attacker could use this issue to cause Dnsmasq to
crash, resulting in a denial of service.
The problem can be corrected by updating your system to the following
package version:
To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.
After a standard system update you need to reboot your computer to make
all the necessary changes.
20th June, 2016
A security issue affects these releases of Ubuntu and its
derivatives:
HAProxy could be made to crash if it received specially crafted network
traffic.
Falco Schmutz discovered that HAProxy incorrectly handled the reqdeny
filter. A remote attacker could use this issue to cause HAProxy to crash,
resulting in a denial of service.
The problem can be corrected by updating your system to the following
package version:
To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system update will make all the necessary changes.
20th June, 2016
A security issue affects these releases of Ubuntu and its
derivatives:
Wget could be made to overwrite files.
Dawid Golunski discovered that Wget incorrectly handled filenames when
being redirected from an HTTP to an FTP URL. A malicious server could
possibly use this issue to overwrite local files.
The problem can be corrected by updating your system to the following
package version:
To update your system, please follow these instructions:
https://wiki.ubuntu.com/Security/Upgrades.
In general, a standard system update will make all the necessary changes.