Wednesday, August 18, 2021

New iCloud Version For Windows Released

Apple have released new version of their iCloud client for Windows. New version fix security vulnerabilities.

iCloud for Windows 12.5 is for Windows 10 and later and is available via Windows Store.

More information about the security content of the new version can be read from the correspondent security advisory.

Mozilla Products Updated

Mozilla has released updated versions of their Firefox web browser and Thunderbird email client. New versions fix security vulnerabilities.

Affected versions:
-Mozilla Firefox earlier than 91.0.1
-Mozilla Thunderbird earlier than 91.0.1

More information in related security advisory.

Adobe Captivate Hotfix Available

Adobe have released a security hotfix for Adobe Captivate for macOS. The fix addresses a privilege escalation vulnerability (CVE-2021-36002).

Affected versions and solution
Users of Adobe Captivate 2019 11.5.5 and earlier should install the hotfix

More information can be read from Adobe's security bulletin.

Updates To Adobe XMP-Toolkit-SDK Released

Adobe has released updates for XMP-Toolkit-SDK. Updates fix multiple critical and important categorized vulnerabilities of which some may allow an attacker to execute arbitrary code in the context of the current user.

Affected versions
-Adobe XMP-Toolkit-SDK versions earlier than 2021.07
 
More information in correspondent security bulletin.

New Version Of Adobe Photoshop Available

Adobe have released new versions of Adobe Photoshop for Windows and macOS. These updates resolve two critical security vulnerabilities (CVE-2021-36065, CVE-2021-36066) that could lead to arbitrary code execution in the context of the current user.

Affected versions:
- Adobe Photoshop 2020 versions 21.x earlier than 21.2.10
- Adobe Photoshop 2021 versions 22.x earlier than 22.4.3

Instructions for updating are given in related security bulletin.

Adobe Bridge Updated

Adobe Bridge has received a new version. This new version resolves critical vulnerabilities which may allow execution of arbitrary code.

Affected versions:
- Adobe Bridge 11.1 and earlier versions for Windows

Solution:
- Update to Adobe Bridge 11.1.1 or 10.1.3


More information can be read from Adobe's security bulletin.

Adobe Media Encoder Updated

Adobe have released updated versions of their Media Encoder. The new versions fix one critical categorized vulnerability (CVE-2021-36070). Exploiting the vulnerability it may be possible to execute arbitrary code in the target system.

Affected versions:
- Adobe Media Encoder versions earlier than 15.4.1

More information in related security bulletin.

Adobe Connect Update Available

Adobe have released updated versions of Adobe Connect. This update resolves important categorized vulnerabilities (CVE-2021-36061, CVE-2021-36062, CVE-2021-36063). Successful exploitation could lead to arbitrary code execution or security feature bypass.

Affected versions:
- Adobe Connect earlier than 11.2.2

More information can be read from Adobe's security bulletin.

Magento Vulnerabilities Fixed

Magento has released updates for Adobe Commerce and Open Source editions. The new versions fix a bunch of vulnerabilities of which many critical and that may allow arbitrary code execution.

Affected versions
Adobe Commerce 2.4.2 and earlier versions
Adobe Commerce 2.4.2-p1 and earlier versions
Adobe Commerce 2.3.7 and earlier versions
Magento Open Source 2.4.2-p1 and earlier versions
Magento Open Source 2.3.7 and earlier versions

More information in the correspondent security bulletin.

Microsoft Security Updates For August 2021

Microsoft have released security updates for August 2021.

Release notes of the updates can be viewed here.

Wednesday, August 11, 2021

New Mozilla Thunderbird Version Released

Mozilla have released updated version of their Thunderbird email client containing some fixes to security vulnerabilities.

Affected versions:
- Mozilla Thunderbird earlier than 78.13 (advisory)

Fresh version can be obtained via inbuilt updater or by downloading from the product site.

Mozilla Firefox Updated

Mozilla have released updated versions of their Firefox web browser. New versions fix security vulnerabilities.

Affected versions:
-Mozilla Firefox earlier than 91 (advisory)
-Mozilla Firefox ESR 78.x earlier than 78.13 (advisory)

Fresh version can be obtained via inbuilt updater or by downloading (latest version) from the product site.

Thursday, August 5, 2021

Foxit PDF Reader And Foxit PDF Editor Updated

Foxit Software has released version 11.0.1 of their Foxit PDF Reader and Foxit PDF Editor software for Windows. The new versions contain fixes for security vulnerabilities that if exploited may allow an attacker to execute arbitrary code in target system.

Affected versions:
Foxit PDF Reader (previously named Foxit Reader) 11.0.0.49893 and earlier (Windows)
Foxit PDF Editor (previously named Foxit PhantomPDF) 11.0.0.49893, 10.1.4.37651 and earlier (Windows)

More information can be read here.

New PHP versions available

PHP development team has released 8.0.9 and 7.4.22 versions of the PHP scripting language. All PHP users are recommended to upgrade their versions to the latest release of the correspondent branch.

Changelogs: