Debian-LTS has updated xmltooling (denial of service).
Mageia has updated cacti (MG4,5: multiple vulnerabilities), firefox (MG4,5: information leak), ghostscript (MG4,5: buffer overflow), libunwind (MG4,5: buffer overflow), lxc (MG5: two vulnerabilities), and wordpress (MG4: multiple vulnerabilities).
Red Hat has updated firefox (RHEL5,6,7: information leak).
Scientific Linux has updated firefox (SL5,6,7: information leak).
Debian has updated kernel (multiple vulnerabilities).
Fedora has updated drupal6-cck (F22; F21: unspecified vulnerability), lighttpd (F22; F21: log injection), mantis (F22; F21: information disclosure), opensaml-java (F22; F21: missing host name verification), opensaml-java-openws (F22; F21: missing host name verification), and openstack-swift (F22: arbitrary object deletion).