Here a roundup of last week's Linux security updates for Arch Linux, CentOS, Debian GNU/Linux, Fedora Linux, Gentoo Linux, Oracle Linux, Red Hat Enterprise Linux, Slackware Linux, SUSE Linux, and Ubuntu Linux.

Arch Linux

• ASA-202101-25: sudo: multiple issues
• ASA-202101-31: linux-zen: directory traversal
• ASA-202101-40: flatpak: sandbox escape
• ASA-202101-39: erlang: certificate verification bypass
• ASA-202101-38: dnsmasq: multiple issues
• ASA-202101-37: virtualbox: multiple issues
• ASA-202101-36: podofo: multiple issues
• ASA-202101-41: jenkins: multiple issues
• ASA-202101-34: gptfdisk: arbitrary code execution
• ASA-202101-30: linux-lts: directory traversal
• ASA-202101-35: vlc: arbitrary code execution
• ASA-202101-29: lldpd: information disclosure
• ASA-202101-33: linux: directory traversal
• ASA-202101-32: linux-hardened: directory traversal
• ASA-202101-28: openvswitch: multiple issues
• ASA-202101-27: go: multiple issues
• ASA-202101-26: gobby: denial of service
• ASA-202101-44: home-assistant: information disclosure
• ASA-202101-43: mutt: denial of service
• ASA-202101-42: libvirt: arbitrary code execution
• ASA-202101-45: libgcrypt: arbitrary code execution

CentOS

• CESA-2021:0153 Moderate CentOS 7 dnsmasq Security Update
• CESA-2021:0162 Important CentOS 7 xstream Security Update
• CESA-2020:5350 Important CentOS 7 net-snmp Security Update
• CEBA-2021:0202 CentOS 7 java-11-openjdk BugFix Update
• CEBA-2021:0209 CentOS 7 java-1.8.0-openjdk BugFix Update
• CEBA-2021:0013 CentOS 7 tzdata BugFix Update
• CEBA-2021:0077 CentOS 7 389-ds-base BugFix Update
• CEBA-2021:0276 CentOS 7 tzdata BugFix Update
• CESA-2021:0221 Important CentOS 7 sudo Security Update

Debian GNU/Linux

• DSA 4837-1: salt security update
• DSA 4833-2: gst-plugins-bad1.0 regression update
• ELA-350-1 python-bottle security update
• DLA 2531-1: python-bottle security update
• DLA 2532-1: debian-security-support security update
• DLA 2533-1: crmsh security update
• DSA 4838-1: mutt security update
• DLA 2534-1: sudo security update
• DSA 4839-1: sudo security update
• ELA-351-1 sudo security update
• DLA 2535-1: ansible security update
• DSA 4841-1: slurm-llnl security update
• DSA 4840-1: firefox-esr security update
• ELA-352-1 dbus security update
• ELA-353-1 libsdl2 security update
• DLA 2537-1: ffmpeg security update
• DLA 2431-2: libonig regression update
• DLA 2536-1: libsdl2 security update

Fedora Linux

• Fedora 33 Update: xen-4.14.1-2.fc33
• Fedora 32 Update: sudo-1.9.5p2-1.fc32
• Fedora 32 Update: php-pear-1.10.12-5.fc32
• Fedora 33 Update: sudo-1.9.5p2-1.fc33
• Fedora 33 Update: kernel-5.10.10-200.fc33
• Fedora 33 Update: seamonkey-2.53.6-1.fc33
• Fedora 33 Update: thunderbird-78.6.1-1.fc33
• Fedora 33 Update: php-pear-1.10.12-5.fc33
• Fedora 32 Update: nss-3.60.1-1.fc32
• Fedora 32 Update: firefox-85.0-2.fc32
• Fedora 33 Update: firefox-85.0-2.fc33
• Fedora 33 Update: nss-3.60.1-1.fc33
• Fedora 33 Update: erlang-23.2.3-1.fc33
• Fedora 32 Update: seamonkey-2.53.6-1.fc32
• Fedora 33 Update: mingw-python3-3.9.1-2.fc33
• Fedora 33 Update: firefox-85.0-4.fc33
• Fedora 33 Update: thunderbird-78.7.0-1.fc33
• Fedora 33 Update: opensmtpd-6.8.0p2-1.fc33
• Fedora 32 Update: opensmtpd-6.8.0p2-1.fc32
• Fedora 32 Update: mingw-python3-3.8.3-8.fc32
• Fedora 33 Update: netpbm-10.93.00-1.fc33
• Fedora 33 Update: libebml-1.4.1-1.fc33
• Fedora 33 Update: jasper-2.0.24-1.fc33
• Fedora 32 Update: xen-4.13.2-6.fc32
• Fedora 32 Update: chromium-88.0.4324.96-1.fc32

Gentoo Linux

• GLSA 202101-21 : Flatpak: Sandbox escape
• GLSA 202101-20 : glibc: Multiple vulnerabilities
• GLSA 202101-19 : OpenJDK: Multiple vulnerabilities
• GLSA 202101-18 : Python: Multiple vulnerabilities
• GLSA 202101-29 : OpenJPEG: Multiple vulnerabilities
• GLSA 202101-28 : ncurses: Multiple vulnerabilities
• GLSA 202101-27 : FreeRADIUS: Root privilege escalation
• GLSA 202101-26 : f2fs-tools: Multiple vulnerabilities
• GLSA 202101-25 : Mutt: Denial of service
• GLSA 202101-24 : cfitsio: Multiple vulnerabilities
• GLSA 202101-22 : libvirt: Unintended access to /dev/mapper/control
• GLSA 202101-33 : sudo: Multiple vulnerabilities
• GLSA 202101-31 : Cacti: Remote code execution
• GLSA 202101-32 : Mutt, NeoMutt: Information disclosure
• GLSA 202101-35 : phpMyAdmin: Multiple vulnerabilities
• GLSA 202101-34 : Telegram Desktop: Multiple vulnerabilities
• GLSA 202101-38 : NSD: Symbolic link traversal
• GLSA 202101-37 : VLC: Buffer overflow
• GLSA 202101-36 : ImageMagick: Command injection

Oracle Linux

• ELEA-2021-0210 Oracle Linux 8 new package: kmod-redhat-mpt3sas
• ELBA-2021-9016 Oracle Linux 8 dbus bug fix update
• ELSA-2021-0221 Important: Oracle Linux 7 sudo security update
• ELBA-2021-0276 Oracle Linux 7 tzdata bug fix and enhancement update
• ELBA-2021-0276 Oracle Linux 7 tzdata bug fix and enhancement update (aarch64)
• ELSA-2021-0221 Important: Oracle Linux 7 sudo security update (aarch64)
• ELSA-2021-0218 Important: Oracle Linux 8 sudo security update
• ELBA-2021-0276 Oracle Linux 8 tzdata bug fix and enhancement update
• FELBA-2021-9018 Oracle Linux 7 libbpf bug fix update (aarch64)
• ELBA-2021-9018 Oracle Linux 7 libbpf bug fix update
• ELSA-2021-0290 Important: Oracle Linux 7 firefox security update
• ELSA-2021-9019 Important: Oracle Linux 6 sudo security update
• ELBA-2021-9018 Oracle Linux 7 libbpf bug fix update
• ELSA-2021-0290 Important: Oracle Linux 7 firefox security update (aarch64)
• ELSA-2021-0297 Important: Oracle Linux 7 thunderbird security update
• ELSA-2021-0288 Important: Oracle Linux 8 firefox security update
• ELSA-2021-0298 Important: Oracle Linux 8 thunderbird security update

Red Hat Enterprise Linux

• RHSA-2021:0245-01: Moderate: dnsmasq security update
• RHSA-2021:0240-01: Moderate: dnsmasq security update
• RHSA-2021:0250-01: Important: Red Hat JBoss Enterprise Application Platform 7.3.5 security update
• RHSA-2021:0248-01: Important: Red Hat JBoss Enterprise Application Platform 7.3.5 security update
• RHSA-2021:0246-01: Important: Red Hat JBoss Enterprise Application Platform 7.3.5 security update
• RHSA-2021:0247-01: Important: Red Hat JBoss Enterprise Application Platform 7.3.5 security update
• RHSA-2021:0171-01: Moderate: OpenShift Container Platform 4.6.13 bug fix and security update
• RHSA-2021:0172-01: Moderate: OpenShift Container Platform 4.6.13 packages and security update
• RHSA-2021:0223-01: Important: sudo security update
• RHSA-2021:0222-01: Important: sudo security update
• RHSA-2021:0221-01: Important: sudo security update
• RHSA-2021:0224-01: Important: sudo security update
• RHSA-2021:0227-01: Important: sudo security update
• RHSA-2021:0219-01: Important: sudo security update
• RHSA-2021:0225-01: Important: sudo security update
• RHSA-2021:0218-01: Important: sudo security update
• RHSA-2021:0220-01: Important: sudo security update
• RHSA-2021:0226-01: Important: sudo security update
• RHSA-2021:0258-01: Moderate: cryptsetup security update
• RHSA-2021:0266-01: Moderate: gnome-settings-daemon security update
• RHSA-2021:0257-01: Important: net-snmp security update
• RHSA-2021:0285-01: Important: firefox security update
• RHSA-2021:0289-01: Important: firefox security update
• RHSA-2021:0288-01: Important: firefox security update
• RHSA-2021:0290-01: Important: firefox security update
• RHSA-2021:0297-01: Important: thunderbird security update
• RHSA-2021:0299-01: Important: thunderbird security update
• RHSA-2021:0298-01: Important: thunderbird security update

Slackware Linux

• Seamonkey (SSA:2021-024-01)
• Sudo (SSA:2021-026-01)

SUSE Linux

• openSUSE-SU-2021:0147-1: critical: Security update for hawk2
• openSUSE-SU-2021:0148-1: moderate: Security update for ImageMagick
• openSUSE-SU-2021:0152-1: moderate: Security update for python-autobahn
• openSUSE-SU-2021:0154-1: moderate: Security update for wavpack
• openSUSE-SU-2021:0153-1: moderate: Security update for wavpack
• openSUSE-SU-2021:0150-1: moderate: Security update for gdk-pixbuf
• openSUSE-SU-2021:0160-1: moderate: Security update for stunnel
• openSUSE-SU-2021:0165-1: important: Security update for virtualbox
• openSUSE-SU-2021:0162-1: moderate: Security update for mutt
• openSUSE-SU-2021:0161-1: moderate: Security update for mutt
• openSUSE-SU-2021:0166-1: important: Security update for chromium
• openSUSE-SU-2021:0169-1: important: Security update for sudo
• openSUSE-SU-2021:0170-1: important: Security update for sudo
• openSUSE-SU-2021:0173-1: important: Security update for chromium
• openSUSE-SU-2021:0176-1: moderate: Security update for python-autobahn
• openSUSE-SU-2021:0177-1: important: Security update for chromium
• openSUSE-SU-2021:0180-1: moderate: Security update for python-autobahn
• openSUSE-SU-2021:0186-1: important: Security update for chromium
• openSUSE-SU-2021:0194-1: moderate: Security update for go1.14
• openSUSE-SU-2021:0192-1: moderate: Security update for go1.15
• openSUSE-SU-2021:0190-1: moderate: Security update for go1.14
• openSUSE-SU-2021:0188-1: moderate: Security update for messagelib
• openSUSE-SU-2021:0195-1: moderate: Security update for nodejs8
• openSUSE-SU-2021:0208-1: important: Security update for MozillaThunderbird
• openSUSE-SU-2021:0209-1: important: Security update for MozillaThunderbird
• openSUSE-SU-2021:0207-1: moderate: Security update for segv_handler
• openSUSE-SU-2021:0198-1: moderate: Security update for segv_handler

Ubuntu Linux

• USN-4702-1: Pound vulnerabilities
• USN-4703-1: Mutt vulnerability
• USN-4705-1: Sudo vulnerabilities
• USN-4704-1: libsndfile vulnerabilities
• USN-4705-2: Sudo vulnerability
• USN-4710-1: Linux kernel vulnerability
• USN-4709-1: Linux kernel vulnerabilities
• USN-4708-1: Linux kernel vulnerabilities
• USN-4712-1: Linux kernel regression
• USN-4707-1: TCMU vulnerability
• USN-4706-1: Ceph vulnerabilities
• USN-4711-1: Linux kernel vulnerabilities
• USN-4713-1: Linux kernel vulnerability
• USN-4714-1: XStream vulnerabilities