Saturday, July 23, 2022

Oracle Critical Patch Update For Q3 of 2022

Oracle has released updates for their products that fix 349 security issues (including five Java fixes) in total. The updates are a part of Oracle's quarterly released critical patch update (CPU).

Detailed list of vulnerabilities with patching instructions can be read from Oracle CPU Advisory.

The next Oracle CPU is planned to be released in October 2022.

Google Chrome Updated

Google has released updated version of their Chrome web browser. Version 103.0.5060.134 is available for Windows, macOS and Linux. Among other changes the new version contains fixes for 11 security vulnerabilities.

More information available in Google Chrome releases blog.

RoboHelp Update Available

Adobe has released an updated version of their RoboHelp for Windows and macOS. The new versions fix as important categorized arbitrary code execution vulnerability (CVE-2022-23201).

Affected versions:
-RH2020.0.7 and earlier

More information can be read here.

Adobe Reader And Acrobat Security Updates

Adobe have released security updates to fix vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat for Windows and macOS. Exploiting the vulnerabilities could allow arbitrary code execution in the context of the current user.

Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 22.001.20169

*Acrobat 2020 and Acrobat Reader 2020, 2020 classic track
versions earlier than 20.005.30362

*Acrobat 2017 and Acrobat Reader 2017, 2017 classic track
versions earlier than 17.012.30249


Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.

Full version of Adobe Acrobat Reader DC and a trial version of Adobe Acrobat Pro DC can be found here.

More information about fixed vulnerability can be read from Adobe's security bulletin.

Adobe Character Animator Updated

There has been released a new version of Adobe Character Animator. The new version fixes two vulnerabilities (CVE-2022-34241, CVE-2022-34242) that could lead to remote code execution.

Affected versions:
- Character Animator 2021 4.4.7 and earlier versions
- Character Animator 2022 22.4 and earlier versions

More information can be read from the Adobe security bulletin.

Adobe Photoshop Vulnerability Fixed

Adobe have released new versions of Adobe Photoshop for Windows and macOS. These updates resolve one critical security vulnerability (CVE-2022-34243) which could lead to arbitrary code execution and one important (CVE-2022-34244) which could lead to memory leak in the context of the current user.

Affected versions on Windows and macOS:
- Adobe Photoshop 2022 versions 23.x earlier than 23.4.1
- Adobe Photoshop 2021 versions 22.x earlier than 22.5.8

Instructions for updating are given in related security bulletin.

Monday, July 18, 2022

Microsoft Security Updates For July 2022

Microsoft have released security updates for July 2022.

Release notes of the updates can be viewed here.