Citrix has published firmware updates for Application Delivery Controller (ADC) and Citrix Gateway products to address a critical vulnerability. An unathenticated attacker could exploit the vulnerability and execute arbitrary code.
Google has released Chrome 79.0.3945.130 for Windows, Mac and Linux. The update includes 11 security fixes.
Microsoft issued the January 2020 Security Updates that include 49 unique vulnerability fixes, 8 of those rated critical and 29 rated important. One of the patches addresses a CryptoAPI Spoofing vulnerability CVE-2020-0601. DHS CISA also issued an emergency directive with recommendations to patch this Windows CryptoAPI, Windows Remote Desktop Gateway (RD Gateway), and Windows Remote Desktop Client.
VMware has released security updates to address a local privilege escalation vulnerability (CVE-2020-3941) in VMware Tools for Windows.
The time has finally arrived. Microsoft Windows 7 and multiple versions of Windows Server 2008 have reached end of support today, January 14, 2020. As a result, customers will no longer receive technical support and software updates for those products as of today.
Cisco has released security updates for Webex, IOS, and other products. Two of the vulnerabilities are rated High severity and should be prioritized.
Just a day after releasing Firefox 72, the Mozilla Foundation released a new security update 72.0.1 that addresses a critical security vulnerability under active attack.
Google has released Chrome 79.0.3945.117 for Windows, Mac and Linux. The update includes three security fixes. The company also added a Chrome browser update for Android.
The Mozilla Foundation has released Firefox 72 with browser fingerprinting protections built in. In addition the latest update also addresses ten security vulnerabilities.
Cisco's Talos security group has released details on two High severity buffer overflow vulnerabilities that affect OpenCV libraries.