Gentoo Linux Security Advisory 201612-8 – A vulnerability in LinuxCIFS utils’ cifscreds PAM module might allow remote attackers to have an unspecified impact via unknown vectors. Versions less than 6.4 are affected.

Gentoo Linux Security Advisory 201612-9 – Multiple vulnerabilities have been found in GD, the worst of which allows remote attackers to execute arbitrary code. Versions less than 2.2.3 are affected.

Gentoo Linux Security Advisory 201612-10 – Libvirt is vulnerable to directory traversal when using Access Control Lists (ACL). Versions less than 1.2.21-r1 are affected.

Red Hat Security Advisory 2016-2850-01 – Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 45.5.1. Security Fix: A flaw was found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitrary code with the privileges of the user running Thunderbird.

Gentoo Linux Security Advisory 201612-5 – Pygments is vulnerable to remote code execution if an attacker is allowed to specify the font name. Versions less than 2.0.2-r1 are affected.

Gentoo Linux Security Advisory 201612-6 – Nghttp2 is vulnerable to a heap-use-after-free flaw in idle stream handling code. Versions less than 1.6.0 are affected.