Google have released version 95.0.4638.54 for Windows, macOS and Linux. In addition to other changes the new version contains fixes to 19 security vulnerabilities.
More information can be read from Google Chrome releases blog.
Friday, October 22, 2021
Oracle Critical Patch Update For Q4 of 2021
Oracle have released updates for their products that fix 419 security issues (including 15 Java fixes) in total. The updates are a part of Oracle's quarterly released critical patch update (CPU).
Detailed list of vulnerabilities with patching instructions can be read from Oracle CPU Advisory.
The next Oracle CPU is planned to be released in January 2022.
Detailed list of vulnerabilities with patching instructions can be read from Oracle CPU Advisory.
The next Oracle CPU is planned to be released in January 2022.
Adobe Reader And Acrobat Security Updates
Adobe have released security updates to fix vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat. Exploiting the vulnerabilities could allow arbitrary code execution in the context of the current user.
Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 21.007.20099
*Acrobat 2020 and Acrobat Reader 2020, 2020 classic track
versions earlier than 20.004.30017
*Acrobat 2017 and Acrobat Reader 2017, 2017 classic track
versions earlier than 17.011.30204
Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.
Full version of Adobe Acrobat Reader DC and a trial version of Adobe Acrobat Pro DC can be found here.
More information about fixed vulnerability can be read from Adobe's security bulletin.
Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 21.007.20099
*Acrobat 2020 and Acrobat Reader 2020, 2020 classic track
versions earlier than 20.004.30017
*Acrobat 2017 and Acrobat Reader 2017, 2017 classic track
versions earlier than 17.011.30204
Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.
Full version of Adobe Acrobat Reader DC and a trial version of Adobe Acrobat Pro DC can be found here.
More information about fixed vulnerability can be read from Adobe's security bulletin.
Adobe Connect Update Available
Adobe have released updated versions of Adobe Connect. This update resolves one critical (CVE-2021-40719) and one important (CVE-2021-40721) categorized vulnerability. Successful exploitation could lead to arbitrary code execution.
Affected versions:
- Adobe Connect earlier than 11.2.3
More information can be read from Adobe's security bulletin.
Affected versions:
- Adobe Connect earlier than 11.2.3
More information can be read from Adobe's security bulletin.
Adobe Reader Mobile Vulnerability Fixed
Adobe has released an update for its Adobe Reader Mobile for Android. The update fixes an arbitrary code execution vulnerability (CVE-2021-40724). Exploitation of the vulnerability may lead to information disclosure in the context of the current user.
Affected Versions
-Adobe Acrobat Reader for Android versions earlier than 21.9.0
More information available in Adobe security bulletin.
Affected Versions
-Adobe Acrobat Reader for Android versions earlier than 21.9.0
More information available in Adobe security bulletin.
Adobe Commerce Vulnerabilities Fixed
Adobe has released updates for Adobe Commerce and Magento Open Source editions. The new versions fix an important categorized vulnerablity (CVE-2021-39864) which may lead to security feature bypass.
Affected versions
Adobe Commerce 2.4.2-p2 and earlier versions
Adobe Commerce 2.4.3 and earlier versions
Adobe Commerce 2.3.7-p1 and earlier versions
Magento Open Source 2.4.2-p2 and earlier versions
Magento Open Source 2.4.3 and earlier versions
Magento Open Source 2.3.7-p1 and earlier versions
More information in the correspondent security bulletin.
Affected versions
Adobe Commerce 2.4.2-p2 and earlier versions
Adobe Commerce 2.4.3 and earlier versions
Adobe Commerce 2.3.7-p1 and earlier versions
Magento Open Source 2.4.2-p2 and earlier versions
Magento Open Source 2.4.3 and earlier versions
Magento Open Source 2.3.7-p1 and earlier versions
More information in the correspondent security bulletin.
Critical Vulnerability Fixed In Adobe Campaign Standard
Adobe have released a new version of their Adobe Campaign Standard on Windows and Linux. The new version fixes a security vulnerability (CVE-2021-40744) that may result in arbitrary code execution.
Affected versions and solutions
- Adobe Campaign Standard 21.2.1 (and earlier versions) should update to version 21.3
More information can be read from Adobe security bulletin.
Affected versions and solutions
- Adobe Campaign Standard 21.2.1 (and earlier versions) should update to version 21.3
More information can be read from Adobe security bulletin.
Saturday, October 16, 2021
Microsoft Security Updates For October 2021
Microsoft have released security updates for October 2021.
Release notes of the updates can be viewed here.
Release notes of the updates can be viewed here.
Monday, October 11, 2021
Mozilla Firefox Updated
Mozilla have released updated versions of their Firefox web browser. New versions fix security vulnerabilities.
Affected versions:
-Mozilla Firefox earlier than 93 (advisory)
-Mozilla Firefox ESR 91.x earlier than 91.2 (advisory)
-Mozilla Firefox ESR 78.x earlier than 78.15 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading (latest version) from the product site.
Wednesday, October 6, 2021
Vulnerabilities In Corel Products For Windows
FortiGuard Labs have disclosed multiple (15) critical zero-day vulnerabilities in several Corel products on Microsoft Windows 10.
Affected products
- Corel PDF Fusion version 2.6.2.0
- CorelDraw Standard 2020 versions 22.0.0.474
- Corel WordPerfect 2020 version 20.0.0.200
- Corel PhotoPaint Standard 2020 version 22.0.0.474
- Corel Presentations 2020 version 20.0.0.200
More information available in FortiGuard Labs blog post.
Google Chrome updated
Google have released version 94.0.4606.71 for Windows, macOS and Linux. In addition to other changes the new version contains fixes to four security vulnerabilities.
More information can be read from Google Chrome releases blog.
Monday, October 4, 2021
New PHP versions available
PHP development team has released 8.0.11, 7.4.24 and 7.3.31 versions of the PHP scripting language. Among other bugs some security bugs have been fixed. All PHP users are recommended to upgrade their versions to the latest release of the correspondent branch.
Changelogs:
Subscribe to:
Posts (Atom)
