Several vulnerabilities have been fixed in the GNU C Library, glibc.

Several vulnerabilities have been fixed in the GNU C Library, eglibc.

Multiple vulnerabilities have been found in the Graphite font rendering
engine which might result in denial of service or the execution of
arbitrary code if a malformed font file is processed.

Daniel Genkin, Lev Pachmanov, Itamar Pipman and Eran Tromer discovered
that the ECDH secret decryption keys in applications using the
libgcrypt11 library could be leaked via a side-channel attack.

Holger Fuhrmannek discovered that missing input sanitising in the
Graphite font rendering engine could result in the execution of arbitrary
code.

Several vulnerabilities have been found in PostgreSQL-9.4, a SQL
database system.

Several vulnerabilities have been found in PostgreSQL-9.1, a SQL
database system.

Daniel Genkin, Lev Pachmanov, Itamar Pipman and Eran Tromer discovered
that the ECDH secret decryption keys in applications using the
libgcrypt20 library could be leaked via a side-channel attack.

Several vulnerabilities were discovered in the resolver in nginx, a
small, powerful, scalable web/proxy server, leading to denial of service
or, potentially, to arbitrary code execution. These only affect nginx if
the resolver directive is used in a configuration file.

Two vulnerabilities were discovered in wordpress, a web blogging tool.
The Common Vulnerabilities and Exposures project identifies the
following problems: