Mozilla Thunderbird Update Available

Mozilla have released an updated version of their Thunderbird email client containing fixes to security vulnerabilities.

Affected versions:
Mozilla Thunderbird versions earlier than 60.5.1

Fresh version can be obtained via inbuilt updater or by downloading from the product site.

Mozilla Firefox Updated

Mozilla have released updated versions of Firefox browser to address security vulnerabilities.

Affected products are:
- Mozilla Firefox earlier than 65.0.1 (advisory)
- Mozilla Firefox earlier than ESR 60.5.1 (advisory)

Fresh version can be obtained via inbuilt updater or by downloading from the product site (the latest version):
Firefox

Google Chrome Updated

Google have released a version 72.0.3626.109 of their Chrome web browser. More information about changes in Google Chrome Releases blog.

Adobe Flash Player Updated

Adobe have released updated versions of their Flash Player. The new versions contain one security vulnerability fix. Successful exploitation of the vulnerability (CVE-2019-7090) may lead to information disclosure in the context of current user.

Affected versions:
- Users of Adobe Flash Player 32.0.0.114 and earlier versions for Windows should update to Adobe Flash Player 32.0.0.142

- Users of Adobe Flash Player 32.0.0.114 and earlier versions for macOS should update to Adobe Flash Player 32.0.0.142

- Users of Adobe Flash Player 32.0.0.114 and earlier versions for Linux should update to Adobe Flash Player 32.0.0.142

- Flash Player integrated with Google Chrome will be updated by Google via Chrome update

- Flash Player integrated with Internet Explorer 11 (on Windows 8.1 and Windows 10) and Microsoft Edge (Windows 10) will be updated via Windows Update


More information can be read from Adobe's security bulletin.

Creative Cloud Desktop Application Update

Adobe has released a security update to fix a vulnerability in their Creative Cloud Desktop Application. The vulnerability is an insecure library loading (DLL hijacking) vulnerability that could lead to privilege escalation (CVE-2019-7093).

Affected versions:
Creative Cloud Desktop Application 4.7.0.400 and earlier versions

More information can be read from Adobe's security bulletin.

Adobe ColdFusion Fix Available

Adobe have released updated versions of ColdFusion web application development platform. These fixes resolve security vulnerabilities of which one critical (CVE-2019-7091) and one important (CVE-2019-7092). Successful exploitation of the critical vulnerability may allow an attacker to execute arbitrary code in the affected system.

Affected versions:
- ColdFusion (2018 release): update 1 and earlier versions
- ColdFusion (2016 release): update 7 and earlier versions
- ColdFusion 11: update 15 and earlier versions

More information can be read from Adobe's security bulletin.

Adobe Reader And Acrobat Security Updates

Adobe have released security updates to fix vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat. Exploiting the vulnerabilities could lead to arbitrary code execution in the context of the current user.

Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 2019.010.20091

*Acrobat 2017 and Acrobat Reader DC 2017, 2017 classic track
versions earlier than 2017.011.30120

*Acrobat DC and Acrobat Reader DC, 2015 classic track
versions earlier than 2015.006.30475


Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.

Those who want to upgrade manually, can download the latest versions of the links below:
Adobe Reader
Adobe Acrobat

More information about fixed vulnerability can be read from Adobe's security bulletin.

Microsoft Security Updates For February 2019

Microsoft have released security updates for February 2019.

Summary of the updates (filter by inserting 01/09/2019 to the From field and 02/12/2019 to the To field) here.

Latest PHP Versions Available

PHP development team has released 7.3.2 and 7.2.15 versions of the PHP scripting language. All PHP users are recommended to upgrade their versions to the latest release of the correspondent branch.

Changelogs:
Version 7.3.2
Version 7.2.15

Chrome Vulnerability Fixed

Google have released 72.0.3626.96 version of their Chrome web browser. The new version contains a fix to a security vulnerability (CVE-2019-5784). More information in Chrome release blog.

Symantec Intelligence Report: January 2019

Symantec have published their Intelligence report that sums up the latest threat trends for January 2019.

The report can be viewed here.

New Google Chrome Version Released

Google have released a version 72.0.3626.81 of their Chrome web browser. Among new features the new version contains fixes to 58 security vulnerabilities. More information about changes can be viewed in Google Chrome Releases blog.

Mozilla Firefox Updated

Mozilla have released updated versions of Firefox browser to address security vulnerabilities including some critical ones.

Affected products are:
- Mozilla Firefox earlier than 65 (advisory)
- Mozilla Firefox earlier than ESR 60.5 (advisory)

Fresh version can be obtained via inbuilt updater or by downloading from the product site (the latest version):
Firefox

Mozilla Thunderbird Update Available

Mozilla have released an updated version of their Thunderbird email client containing fixes to security vulnerabilities. Some of the fixed vulnerabilities are categorized as critical.

Affected versions:
Mozilla Thunderbird versions earlier than 60.5

Fresh version can be obtained via inbuilt updater or by downloading from the product site.