Two vulnerabilities were discovered in wordpress, a web blogging tool.
The Common Vulnerabilities and Exposures project identifies the
following problems:

Several vulnerabilities were discovered in qemu, a full virtualization
solution on x86 hardware.

Several vulnerabilities were discovered in qemu-kvm, a full
virtualization solution on x86 hardware.

Several vulnerabilities have been found in tiff, a Tag Image File Format
library. Multiple out-of-bounds read and write flaws could cause an
application using the tiff library to crash.

It was discovered that polarssl, a library providing SSL and TLS
support, contained two heap-based buffer overflows that could allow a
remote attacker to trigger denial of service (via application crash)
or arbitrary code execution.

Several vulnerabilities were discovered in krb5, the MIT implementation
of Kerberos. The Common Vulnerabilities and Exposures project identifies
the following problems:

Several vulnerabilities have been discovered in OpenJDK, an
implementation of the Oracle Java platform, resulting in breakouts of
the Java sandbox, information disclosure, denial of service and insecure
cryptography.

Multiple security issues have been discovered in the Ruby on Rails web
application development framework, which may result in denial of service,
cross-site scripting, information disclosure or bypass of input
validation.

It was discovered that insecure handling of dialback keys may allow
a malicious XMPP server to impersonate another server.

Two vulnerabilities were fixed in radicale, a CardDAV/CalDAV server.