At his blog, Lubomir Rintel highlights some of the changes found in the new 1.2 release of Network Manager, the network-configuration utility suite shipped by many Linux distributions. High on the list are privacy improvements; the post notes that "the identity of a mobile host can also leak via Wi-Fi hardware addresses. A common way to solve this is to use random addresses when scanning for available access points, which is what NetworkManager now does (with a recent enough version of wpa_supplicant). The actual hardware address is used only after the device is associated to an access point." Network Manager can also now be used to manage tun, tap, macvlan, vxlan and IP tunnel software devices, and can run multiple VPN modules simultaneously. In addition, support for several hardware device classes was split into loadable modules, which will reduce memory overhead.
Red Hat has updated java-1.6.0-sun (RHEL 5,6,7: multiple vulnerabilities), java-1.7.0-openjdk (RHEL 5,7; RHEL6: multiple vulnerabilities), java-1.7.0-oracle (RHEL 5,6,7: multiple vulnerabilities), and java-1.8.0-oracle (RHEL 6,7: multiple vulnerabilities).
Fedora has updated springframework-amqp (F23: code execution).
Fedora has updated kernel (F23: three vulnerabilities).
Ubuntu has updated firefox (regressions in previous update).
openSUSE has updated Chromium (Leap42.1; 13.1: multiple vulnerabilities), gcc5 (Leap42.1: predictable random values), krb5 (Leap42.1: null pointer dereference), mercurial (Leap42.1: three vulnerabilities), optipng (Leap42.1; 13.2: three vulnerabilities), perl-YAML-LibYAML (Leap42.1: three vulnerabilities, one from 2013), samba (13.2: multiple vulnerabilities), and tiff (13.2: denial of service).
Red Hat has updated chromium-browser (RHEL6: multiple vulnerabilities).