Microsoft January 2022 Security Updates address 10 Critical vulnerabilities
Microsoft has released the January 2022 Security Updates that includes patches and advisories for 127 vulnerabilities, 10 of those rated Critical.
Security Updates & Patches
Citrix addresses vulnerability (CVE-2022-21825) in Workspace App for Linux
Citrix has addressed a vulnerability in Workspace App for Linux that could result in elevation of privileges as root.
WordPress security update (5.8.3) fixes 4 vulnerabilities
WordPress has released WordPress 5.8.3 security and maintenance update that includes fixes for 4 security vulnerabilities.
VMware fixes vulnerability in VMware Workstation, Fusion and ESXi
VMware has issued a patch to fix a High risk vulnerability (CVE-2021-22045) in VMware Workstation, Fusion and ESXi.
Google releases Chrome 97 security update (97.0.4692.71) with fixes for 37 vulnerabilities
Google has released Chrome 97 security update (97.0.4692.71) for Windows, Mac and Linux with fixes for one Critical and ten High risk vulnerabilities.
Microsoft issues emergency Exchange server patch
Microsoft has issued an emergency Exchange server patch that fixes an issue where email messages can get stuck in transport queues.
Apache releases security update for another Log4j RCE vulnerability (CVE-2021-44832)
The Apache Software Foundation has released a new security update to address another Log4j vulnerability (CVE-2021-44832) where Log4j2 is vulnerable to remote code execution (RCE) via JDBC Appender when an attacker controls a configuration file.
Apache patches 2 vulnerabilities in HTTP Server 2.4.51
The Apache HTTP Server Project has patched two vulnerabilities in Apache HTTP Server 2.4.51, one of those rated High severity.
Apache releases new Log4k security update to fix another RCE vulnerability (CVE-2021-45046)
As affected organizations and vendors continue to identify products affected by Log4Shell remote code execution (RCE) Log4j vulnerability, Apache has released additional Log4j security updates to fix another RCE vulnerability (CVE-2021-45046).
Palo Alto Networks offers proactive protections against Apache Log4j vulnerability with Threat Prevention
As organizations continue to discover and patch the severe Apache Log4j vulnerability on their networks, Palo Alto Networks is recommending their customers leverage their next generation firewalls with Threat Prevention service, along with Cortex XDR and Prisma Cloud to help mitigate the threat.