Debian Linux Security Advisory 3823-1 – Ilja Van Sprundel discovered that the dmcrypt-get-device helper used to check if a given device is an encrypted device handled by devmapper, and used in eject, does not check return values from setuid() and setgid() when dropping privileges.

Ubuntu Security Notice 3247-1 – St=E9phane Graber discovered that AppArmor incorrectly unloaded some profiles when restarted or upgraded, contrary to expected behavior.

Ubuntu Security Notice 3244-1 – Hanno Boeck discovered that GStreamer Base Plugins did not correctly handle certain malformed media files. If a user were tricked into opening a crafted media file with a GStreamer application, an attacker could cause a denial of service via application crash.

Ubuntu Security Notice 3246-1 – Ilja Van Sprundel discovered that dmcrypt-get-device incorrectly checked setuid and setgid return values. A local attacker could use this issue to execute code as an administrator.

Gentoo Linux Security Advisory 201703-4 – A coding error has been found in cURL, causing the TLS Certificate Status Request extension check to always return true. Versions less than 7.53.0 are affected.

Gentoo Linux Security Advisory 201703-5 – A vulnerability in Libtasn1 allows remote attackers to cause a Denial of Service condition. Versions less than 4.8 are affected.

Gentoo Linux Security Advisory 201703-6 – A vulnerability in Deluge might allow remote attackers to execute arbitrary code. Versions less than 1.3.14 are affected.

Gentoo Linux Security Advisory 201703-7 – A vulnerability in Xen’s bundled QEMU version might allow privilege escalation. Versions less than 4.7.1-r8 are affected.

Debian Linux Security Advisory 3821-1 – Hanno Boeck discovered multiple vulnerabilities in the GStreamer media framework and its codecs and demuxers, which may result in denial of service or the execution of arbitrary code if a malformed media file is opened.