GLSA 201612-13 (normal) - nghttp2: Denial of Service
Nghttp2 is vulnerable to a Denial of Service attack.

GLSA 201612-12 (normal) - Patch: Denial of Service
Patch is vulnerable to a locally generated Denial of Service condition.

GLSA 201612-11 (normal) - Chromium: Multiple vulnerabilities
Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code.

GLSA 201612-10 (normal) - libvirt: Directory traversal
Libvirt is vulnerable to directory traversal when using Access Control Lists (ACL).

GLSA 201612-09 (normal) - GD: Multiple vulnerabilities
Multiple vulnerabilities have been found in GD, the worst of which allows remote attackers to execute arbitrary code.

GLSA 201612-08 (normal) - LinuxCIFS utils: Buffer overflow
A vulnerability in LinuxCIFS utils' "cifscreds" PAM module might allow remote attackers to have an unspecified impact via unknown vectors.

GLSA 201612-07 (normal) - dpkg: Arbitrary code execution
A vulnerability was discovered in dpkg which could potentially lead to arbitrary code execution.

GLSA 201612-06 (normal) - nghttp2: Heap-use-after-free
Nghttp2 is vulnerable to a heap-use-after-free flaw in idle stream handling code.

GLSA 201612-05 (normal) - Pygments: Arbitrary code execution
Pygments is vulnerable to remote code execution if an attacker is allowed to specify the font name.

GLSA 201612-04 (normal) - BusyBox: Multiple vulnerabilities
Multiple vulnerabilities have been found in BusyBox, the worst of which allows remote attackers to execute arbitrary code.

GLSA 201612-03 (normal) - libsndfile: Multiple vulnerabilities
Multiple vulnerabilities have been found in libsndfile, the worst of which might allow remote attackers to execute arbitrary code.

GLSA 201612-02 (normal) - DavFS2: Local privilege escalation
A vulnerability in DavFS2 allows local users to gain root privileges.

GLSA 201612-01 (normal) - GnuPG: RNG output is predictable
Due to a design flaw, the output of GnuPG's Random Number Generator (RNG) is predictable.

GLSA 201611-22 (normal) - PHP: Multiple vulnerabilities
Multiple vulnerabilities have been found in PHP, the worst of which could lead to arbitrary code execution or cause a Denial of Service condition.

GLSA 201611-21 (normal) - ImageMagick: Multiple vulnerabilities
Multiple vulnerabilities have been found in ImageMagick, the worst of which allows remote attackers to execute arbitrary code.

GLSA 201611-20 (normal) - TestDisk: User-assisted execution of arbitrary code
A buffer overflow in TestDisk might allow remote attackers to execute arbitrary code.

GLSA 201611-19 (normal) - Tar: Extract pathname bypass
A path traversal attack in Tar may lead to the remote execution of arbitrary code.

GLSA 201611-18 (normal) - Adobe Flash Player: Multiple vulnerabilities
Multiple vulnerabilities have been found in Adobe Flash Player, the worst of which allows remote attackers to execute arbitrary code.

GLSA 201611-17 (normal) - RPCBind: Denial of Service
A buffer overflow in RPCBind might allow remote attackers to cause a Denial of Service.

GLSA 201611-16 (normal) - Chromium: Multiple vulnerabilities
Multiple vulnerabilities have been found in the Chromium web browser, the worst of which allows remote attackers to execute arbitrary code.