Debian-LTS has updated fuse (privilege escalation).
Fedora has updated dcraw (F22; F21; F20: denial of service), fuse (F22: privilege escalation), ipsec-tools (F21; F20: denial of service), less (F22: information leak), ntfs-3g (F21: privilege escalation), php-symfony (F22; F21; F20: restriction bypass), ufraw (F22; F21; F20: denial of service), and zarafa (F21; F20: file overwrites).
Scientific Linux has updated openssl (SL6,7: cipher-downgrade attacks).
SUSE has updated cups (SLE11SP3: privilege escalation).
At LinuxCon Japan last week it was announced that the next long-term stable release, to be maintained for two years, will be 4.1.