VMware have released updated versions of their virtualization software patching one moderate (CVE-2019-5539) categorized vulnerability.
Affected versions:
-Horizon Client for Windows 7.x.x earlier than 7.11.0 or 7.10.1 or 7.5.4
-VMware Workstation Pro/Player versions earlier than 15.5.1
More information in VMware advisory here.
Saturday, December 21, 2019
New Google Chrome Version Released
Google have released a version 79.0.3945.88 of their Chrome web browser. The new version contains a fix to a security vulnerability.
More information about changes can be viewed in Google Chrome Releases blog.
More information about changes can be viewed in Google Chrome Releases blog.
WordPress 5.3.2 Released
There has been released a new version of WordPress (blogging tool and content management system). Version 5.3.2 fixes a few high severity bugs that were found after the version 5.3.1 release (it contained also fixes to security vulnerabilities).
Affected versions:
WordPress versions earlier than 5.3.2
More information can be read from the WordPress blog.
Affected versions:
WordPress versions earlier than 5.3.2
More information can be read from the WordPress blog.
Mozilla Thunderbird Update Available
Mozilla have released an updated version of their Thunderbird email client containing fixes to security vulnerabilities.
Affected versions:
Mozilla Thunderbird versions earlier than 68.3
Fresh version can be obtained via inbuilt updater or by downloading from the product site.
Affected versions:
Mozilla Thunderbird versions earlier than 68.3
Fresh version can be obtained via inbuilt updater or by downloading from the product site.
Mozilla Firefox Updated
Mozilla have released updated versions of their Firefox web browser. New versions fix security vulnerabilities.
Affected versions:
-Mozilla Firefox earlier than 71 (advisory)
-Mozilla Firefox ESR 68.x earlier than 68.3 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading (latest version) from the product site.
Affected versions:
-Mozilla Firefox earlier than 71 (advisory)
-Mozilla Firefox ESR 68.x earlier than 68.3 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading (latest version) from the product site.
Adobe ColdFusion Fix Available
Adobe have released updated version of ColdFusion web application development platform. This fix resolves one important categorized (CVE-2019-8256) vulnerability which may allow privilege escalation.
Affected versions:
- ColdFusion (2018 release): update 6 and earlier versions
More information can be read from Adobe's security bulletin.
Affected versions:
- ColdFusion (2018 release): update 6 and earlier versions
More information can be read from Adobe's security bulletin.
New Version Of Adobe Brackets Available
Adobe have released new versions of Adobe Brackets for Windows, Linux and MacOS. These updates resolve a critical categorized vulnerability which could lead to arbitrary code execution in the context of the current user.
Affected versions:
Adobe Brackets 1.14 and earlier versions (Windows, Linux and macOS)
Solution:
Update to Adobe Brackets 1.14.1 version
Instructions for updating are given in related security bulletin.
Affected versions:
Adobe Brackets 1.14 and earlier versions (Windows, Linux and macOS)
Solution:
Update to Adobe Brackets 1.14.1 version
Instructions for updating are given in related security bulletin.
New Version Of Adobe Photoshop Available
Adobe have released new versions of Adobe Photoshop for Windows and Macintosh. These updates resolve two critical categorized vulnerabilities which could lead to arbitrary code execution in the context of the current user.
Affected versions:
Adobe Photoshop CC 20.0.7 and earlier versions (Windows and macOS)
Adobe Photoshop CC 21.0.1 and earlier versions (Windows and macOS)
Solution:
Update to Adobe Photoshop CC 20.0.8 or 21.0.2 version
Instructions for updating are given in related security bulletin.
Affected versions:
Adobe Photoshop CC 20.0.7 and earlier versions (Windows and macOS)
Adobe Photoshop CC 21.0.1 and earlier versions (Windows and macOS)
Solution:
Update to Adobe Photoshop CC 20.0.8 or 21.0.2 version
Instructions for updating are given in related security bulletin.
Adobe Reader And Acrobat Security Updates
Adobe have released security updates to fix vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat. Exploiting the vulnerabilities could lead to arbitrary code execution in the context of the current user.
Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 2019.021.20058
*Acrobat 2017 and Acrobat Reader DC, 2017 classic track
versions earlier than 2017.011.30156
*Acrobat DC and Acrobat Reader DC, 2015 classic track
versions earlier than 2015.006.30508
Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.
Those who want to upgrade manually, can download the latest versions of the links below:
Adobe Reader
Adobe Acrobat
More information about fixed vulnerability can be read from Adobe's security bulletin.
Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 2019.021.20058
*Acrobat 2017 and Acrobat Reader DC, 2017 classic track
versions earlier than 2017.011.30156
*Acrobat DC and Acrobat Reader DC, 2015 classic track
versions earlier than 2015.006.30508
Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.
Those who want to upgrade manually, can download the latest versions of the links below:
Adobe Reader
Adobe Acrobat
More information about fixed vulnerability can be read from Adobe's security bulletin.
New iCloud Versions For Windows Released
Apple have released new versions of their iCloud client for Windows. New versions fix security vulnerabilities.
iCloud for Windows 10.9 is for Windows 10 and later and is available via Windows Store. iCloud for Windows 7.16 is available for Windows 7 and later.
More information about the security content of the new versions can be read from the correspondent security advisories:
-iCloud 10.9
-iCloud 7.16
iCloud for Windows 10.9 is for Windows 10 and later and is available via Windows Store. iCloud for Windows 7.16 is available for Windows 7 and later.
More information about the security content of the new versions can be read from the correspondent security advisories:
-iCloud 10.9
-iCloud 7.16
ITunes 12.10.3 For Windows Released
Apple have released version 12.10.3 of their iTunes media player. New version fixes security vulnerabilities.
More information about the security content of iTunes 12.10.3 can be read from related security advisory.
Users of old versions should update to the latest one available.
More information about the security content of iTunes 12.10.3 can be read from related security advisory.
Users of old versions should update to the latest one available.
Microsoft Security Updates For December 2019
Microsoft have released security updates for December 2019.
Summary of the updates (filter by inserting 11/10/2019 to the From field and 12/10/2019 to the To field) here.
Summary of the updates (filter by inserting 11/10/2019 to the From field and 12/10/2019 to the To field) here.
New PHP versions available
PHP development team has released 7.4.1, 7.3.13 and 7.2.26 versions of the PHP scripting language. Among other bugs some security bugs have been fixed. All PHP users are recommended to upgrade their versions to the latest release of the correspondent branch.
Changelogs:
Version 7.4.1
Version 7.2.26
Changelogs:
Version 7.4.1
Version 7.2.26
Subscribe to:
Posts (Atom)
