Security Updates & Patches - Page 4 of 31

Citrix patches Critical vulnerability exploited in the wild (updated)

Post Author:Frank Crast
Post published:January 25, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits

Citrix has made available a new permanent fix for a critical vulnerability CVE-2019-19781 in affected versions of Citrix SD-WAN WANOP. The update comes nearly five days after Citrix provided firmware updates for the same vulnerability in Application Delivery Controller (ADC) and Citrix Gateway products. An unathenticated attacker could exploit the vulnerability and execute arbitrary code.

Samba fixes 3 vulnerabilities

Post Author:Frank Crast
Post published:January 22, 2020
Post Category:Messaging Security / Security Updates & Patches / Vulnerabilities & Exploits

Samba has released software updates for three security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.

Google releases Chrome security update (79.0.3945.130)

Post Author:Frank Crast
Post published:January 18, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits

Google has released Chrome 79.0.3945.130 for Windows, Mac and Linux. The update includes 11 security fixes.

Oracle Critical Patch Update for January 2020

Post Author:Frank Crast
Post published:January 16, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits

Oracle has released its Critical Patch Update for January 2020 to include 334 vulnerability fixes across multiple products. The company also continues to receive reports of remote attackers attempting to maliciously exploit unpatched vulnerabilities.

Microsoft January 2020 Security Updates (includes fix for Windows CryptoAPI vulnerability)

Post Author:Frank Crast
Post published:January 15, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits

Microsoft issued the January 2020 Security Updates that include 49 unique vulnerability fixes, 8 of those rated critical and 29 rated important. One of the patches addresses a CryptoAPI Spoofing vulnerability CVE-2020-0601. DHS CISA also issued an emergency directive with recommendations to patch this Windows CryptoAPI, Windows Remote Desktop Gateway (RD Gateway), and Windows Remote Desktop Client.

VMware patches Workstation Tools vulnerability (CVE-2020-3941)

Post Author:Frank Crast
Post published:January 15, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits

VMware has released security updates to address a local privilege escalation vulnerability (CVE-2020-3941) in VMware Tools for Windows.

Windows 7 and Windows Server 2008 versions reach end of support

Post Author:Frank Crast
Post published:January 14, 2020
Post Category:Configuration Management / Security Updates & Patches / Vulnerabilities & Exploits

The time has finally arrived. Microsoft Windows 7 and multiple versions of Windows Server 2008 have reached end of support today, January 14, 2020. As a result, customers will no longer receive technical support and software updates for those products as of today.

Cisco security updates for Webex, IOS and other products

Post Author:Frank Crast
Post published:January 13, 2020
Post Category:Network Security / Security Updates & Patches / Vulnerabilities & Exploits

Cisco has released security updates for Webex, IOS, and other products. Two of the vulnerabilities are rated High severity and should be prioritized.

Firefox security update (72.0.1) fixes Critical vulnerability under attack

Post Author:Frank Crast
Post published:January 10, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits / Zero-days

Just a day after releasing Firefox 72, the Mozilla Foundation released a new security update 72.0.1 that addresses a critical security vulnerability under active attack.

Google releases Chrome security update (79.0.3945.117)

Post Author:Frank Crast
Post published:January 9, 2020
Post Category:Security Updates & Patches / Vulnerabilities & Exploits

Google has released Chrome 79.0.3945.117 for Windows, Mac and Linux. The update includes three security fixes. The company also added a Chrome browser update for Android.