Elders/PU_IAS security updates: php, nfs-utils-lib, xorg-x11, libvorbis and others

php security update for 2/2WS and 5 Client/Server fixes numerous security issues, including possible remote code execution. php advisory nfs-utils-lib security update for 2/2WS fixes a stack buffer overflow that could be used to crash applications linked against nfs-utils-lib. nfs-utils-lib advisory xorg-x11 security update for 2/2WS fixes a flaw in X.org's composite extension handler which, if user were to use a compositing window manager with 32bit color depth windows while running in 16bit color depth, could be used by local authorized clients to crash X or execute arbitrary code. xorg-x11 advisory libvorbis security update for 1/1WS, 2/2WS and 5 Client/Server fixes several flaws in the way libvorbis processes audio data. An attacker could create a carefully crafted ogg audio file that when would cause applications linked against libvorbis to crash or execute arbitrary code. libvorbis advisory openoffice security update for 1/1WS, 2/2WS and 5 Client/Server fixes a heap overflow flaw in the TIFF parser.  A carefully crafted document containing malicious TIFF file could be used to execute arbitrary code as the user opening it. openoffice advisory qt security update for 1/1WS, 2/2WS and 5 Client/Server fixes flaws in the way qt proceses UTF8 characters and Unicode strings. qt advisory kernel security update for 5 Client/Server fixes numerous security issues - most causing denial of service. kernel advisory