Wednesday, March 30, 2022

Patch to Chrome Vulnerability Available

Google has released updated version of their Chrome web browser. Version 99.0.4844.84 is available for Windows, macOS and Linux. It fixes a security vulnerability (CVE-2022-1096) that has an exploit in the wild.

More information available in Google Chrome releases blog.

Friday, March 18, 2022

Google Chrome Vulnerabilities Fixed

Google have released version 99.0.4844.74 for Windows, macOS and Linux. In addition to other changes the new version contains fixes to 11 security vulnerabilities.

More information can be read from Google Chrome releases blog.

Thursday, March 17, 2022

WordPress 5.9.2 Released

There has been released a new version of WordPress (blogging tool and content management system) which contains also patches to three security vulnerabilities. It's also recommended to check if there are any updates available for WordPress extensions in use. Also, it's recommended to disable those extensions that are not needed.

Affected versions:
WordPress versions earlier than 5.9.2

More information can be read from the WordPress blog.

PHP version 8.0.17 available

PHP development team has released 8.0.17 version of the PHP scripting language. This is a bug release. All PHP 8.0 users are recommended to upgrade their versions to the latest release of the correspondent branch.

Changelogs:

Adobe Photoshop Vulnerability Fixed

Adobe have released new versions of Adobe Photoshop for Windows and macOS. These updates resolve a security vulnerability (CVE-2022-24090) which could lead to memory leak in the context of the current user.

Affected versions on Windows and macOS:
- Adobe Photoshop 2022 versions 23.x earlier than 23.2
- Adobe Photoshop 2021 versions 22.x earlier than 22.5.6

Instructions for updating are given in related security bulletin.

Adobe Illustrator Updated

Adobe have released an updated version of their Adobe Illustrator for Windows and macOS. The new version fixes a security vulnerability (CVE-2022-23187) that may allow arbitrary code execution.

Affected versions
Illustrator 2022 26.0.3 and earlier versions
Illustrator 2021 25.4.4 and earlier versions

Solution
Update Illustrator 2022 to 26.1.0 (or newer) version
Update Illustrator 2021 to 25.4.5 (or newer) version


More information in the correspondent security bulletin.

Adobe After Effects Updated

Adobe has released an update to patch a critical vulnerabilities (CVE-2022-24094, CVE-2022-24095, CVE-2022-24096 and CVE-2022-24097) in After Effects application. The vulnerabilities could allow arbitrary code execution in the context of the current user.

Affected versions:
- Adobe After Effects earlier than 22.2.1 version on Windows and macOS
- Adobe After Effects earlier than 18.4.5 version on Windows and macOS

More information in security bulletin.

Wednesday, March 16, 2022

Microsoft Security Updates For March 2022

Microsoft have released security updates for March 2022.

Release notes of the updates can be viewed here.

Tuesday, March 8, 2022

Mozilla Products Updated

Mozilla have released updated versions of some of their products. New versions fix two critical security vulnerabilities (CVE-2022-26485 and CVE-2022-26486). Both vulnerabilities have been exploited in the wild.

Affected versions:
-Mozilla Firefox earlier than 97.0.2
-Mozilla Firefox ESR 91.x earlier than 91.6.1
-Firefox for Android earlier than 97.3
-Focus earlier than 97.3
-Thunderbird earlier than 91.6.2

More information about the vulnerabilities can be read from the advisory.

Monday, March 7, 2022

VMware Tools Update Available

VMware have released updated versions of their virtualization software to fix a security vulnerability. VMware Tools for Windows is affected by An uncontrolled search path vulnerability (CVE-2022-22943). A malicious actor with local administrative privileges in the Windows guest OS, where VMware Tools is installed, may be able to execute code with system privileges in the Windows guest OS due to an uncontrolled search path element.

Affected versions:
-VMware Tools for Windows versions earlier than 12.0.0

More information with instructions for updating can be read from the correspondent VMware advisory.

Google Chrome New Update Available

Google have released version 99.0.4844.51 for Windows, macOS and Linux. In addition to other changes the new version contains fixes to 28 security vulnerabilities.

More information can be read from Google Chrome releases blog.