Mozilla Thunderbird Update Available

Mozilla have released an updated version of their Thunderbird email client containing fixes to security vulnerabilities. Some of the fixed vulnerabilities are categorized as critical.

Affected versions:
Mozilla Thunderbird versions earlier than 52.8

Fresh version can be obtained via inbuilt updater or by downloading from the product site.

Symantec Intelligence Report: April 2018

Symantec have published their Intelligence report that sums up the latest threat trends for April 2018.

The report can be viewed here.

Google Chrome Updated

Google have released a version 66.0.3359.181 of their Chrome web browser. More information about changes in Google Chrome Releases blog.

Security Patch Available To Adobe Photoshop

Adobe have released new versions of Adobe Photoshop for Windows and Macintosh. These updates resolve a critical vulnerability (CVE-2018-4946) that could lead to code execution in the context of the current user.

Affected versions:
Adobe Photoshop CC 2018 19.1.3 and earlier versions (Windows and macOS)
Adobe Photoshop CC 2018 18.1.2 and earlier versions on Windows and 18.1.3 and earlier on macOS

Instructions for updating are given in related security bulletin.

Adobe Reader And Acrobat Security Updates

Adobe have released security updates to fix some vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat. The vulnerabilities could allow an attacker to take over the affected system.

Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
version 2018.011.20038 and earlier

*Acrobat 2017 and Acrobat Reader 2017
version 2017.011.30079 and earlier

*Acrobat DC and Acrobat Reader DC, classic track
version 2015.006.30417 and earlier


Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.

Those who want to upgrade manually, can download the latest versions of the links below:
Adobe Reader
Adobe Acrobat

More information about fixed vulnerabilities can be read from Adobe's security bulletin.

Google Chrome Updated

Google have released a version 66.0.3359.170 of their Chrome web browser. New version contains fixes to four security vulnerabilities. More information about changes in Google Chrome Releases blog.

Adobe Connect Update Available

Adobe have released updated versions of Adobe Connect. This update resolves an authentication bypass vulnerability (CVE-2018-4994), which could be exploited to disclose sensitive information.

Affected versions:
- Adobe Connect earlier than 9.7.5

More information can be read from Adobe's security bulletin.

Adobe Flash Player Updated

Adobe have released updated versions of their Flash Player. The new versions fix security vulnerabilities that could allow remote execution of arbitrary code.

Affected versions:
- Users of Adobe Flash Player 29.0.0.140 and earlier versions for Windows should update to Adobe Flash Player 29.0.0.171

- Users of Adobe Flash Player 29.0.0.140 and earlier versions for Macintosh should update to Adobe Flash Player 29.0.0.171

- Users of Adobe Flash Player 29.0.0.140 and earlier versions for Linux should update to Adobe Flash Player 29.0.0.171

- Flash Player integrated with Google Chrome will be updated by Google via Chrome update

- Flash Player integrated with Internet Explorer 11 (on Windows 8.1 and Windows 10) and Microsoft Edge (Windows 10) will be updated via Windows Update


More information can be read from Adobe's security bulletin.

Creative Cloud Desktop Application Update

Adobe have released a security update to fix two vulnerabilities in their Creative Cloud Desktop Application. The first vulnerability is related to the validation of certificates used by Creative Cloud desktop applications (CVE-2018-4991). The second vulnerability is related to the improper input validation (CVE-2018-4992).

Affected versions:
Creative Cloud 4.4.1.298 and earlier versions

More information can be read from Adobe's security bulletin.

Mozilla Firefox Updated

Mozilla have released updated version of Firefox browser to address security vulnerabilities.

Affected products are:
- Mozilla Firefox earlier than ESR 52.8 (advisory)
- Mozilla Firefox earlier than 60 (advisory)

Fresh version can be obtained via inbuilt updater or by downloading from the product site (the latest version):
Firefox

Foxit PhantomPDF Update Available

Foxit Software has released version 8.3.6 of their Foxit PhantomPDF software. The new version contains fixes for security vulnerabilities that if exploited may allow an attacker to execute arbitrary code in target system.

Affected versions:
Foxit PhantomPDF 8.3.5.30351 and earlier (Windows)

More information can be read here.

Microsoft Security Updates For May 2018

Microsoft have released security updates for May 2018.

Summary of the updates (filter by inserting 4/11/2018 to the From field and 5/12/2018 to the To field) here.

Windows Host Compute Service Shim Vulnerability

Microsoft has released an update to address a critical remote code execution vulnerability (CVE-2018-8115) in Windows Host Compute Service Shim (hcsshim) library. More information about the vulnerability and update can be viewed here.

Google Chrome Updated

Google have released a version 66.0.3359.139 of their Chrome web browser. New version contains fixes to three security vulnerabilities. More information about changes in Google Chrome Releases blog.

Latest PHP Versions Available

PHP development team has released 7.2.5, 7.1.17, 7.0.30 and 5.6.36 versions of the PHP scripting language Among other changes several security bugs have been fixed too. All PHP users are recommended to upgrade their versions to the latest release of the correspondent branch.

Changelogs:
Version 7.2.5
Version 7.1.17
Version 7.0.30
Version 5.6.36