Several vulnerabilities were discovered in the chromium web browser.

Several vulnerabilities have been discovered in the Linux kernel that
may lead to a privilege escalation, denial of service or information
leaks.

It was discovered that missing input sanitising in Libreoffice’s filter
for HWP documents may result in the execution of arbitrary code if a
malformed document is opened.

Several vulnerabilities have been discovered in OpenJDK, an
implementation of the Oracle Java platform, resulting in the execution
of arbitrary code, breakouts of the Java sandbox, information disclosure
or denial of service.

The Google security team and the smart hardware research group of
Alibaba security team discovered a flaw in how wpa_supplicant used SSID
information when creating or updating P2P peer entries. A remote
attacker can use this flaw to cause wpa_supplicant to crash, expose
memory contents, and potentially execute arbitrary code.

Several vulnerabilities have been discovered in OpenJDK, an
implementation of the Oracle Java platform, resulting in the execution
of arbitrary code, breakouts of the Java sandbox, information disclosure
or denial of service.

Several vulnerabilities were discovered in cURL, an URL transfer library:

Several vulnerabilities were discovered in Subversion, a version control
system. The Common Vulnerabilities and Exposures project identifies the
following problems:

James P. Turk discovered that the ReST renderer in django-markupfield,
a custom Django field for easy use of markup in text fields, didn’t
disable the ..raw directive, allowing remote attackers to include
arbitrary files.

Several issues have been discovered in the MySQL database server. The
vulnerabilities are addressed by upgrading MySQL to the new upstream
version 5.5.43. Please see the MySQL 5.5 Release Notes and Oracle’s
Critical Patch Update advisory for further details: