Ubuntu has issued an advisory on October 27:
They patched three more CVEs that Fedora missed.
Patched packages uploaded for Mageia 5 and Cauldron.
Updated ntp packages fix security vulnerabilities:
Yves Younan discovered that NTP incorrectly handled logfile and keyfile
directives. In a non-default configuration, a remote authenticated attacker
could possibly use this issue to cause NTP to enter a loop, resulting in a
denial of service (CVE-2015-7850).
Yves Younan discovered that NTP incorrectly handled reference clock memory.
A malicious refclock could possibly use this issue to cause NTP to crash,
resulting in a denial of service, or possibly execute arbitrary code
John D "Doug" Birdwell discovered that NTP incorrectly handled decoding
certain bogus values. An attacker could possibly use this issue to cause
NTP to crash, resulting in a denial of service (CVE-2015-7855).
Updated packages in core/updates_testing:
Steps to Reproduce:
An update for this issue has been pushed to Mageia Updates repository.