Google have released version 91.0.4472.77 for Windows, macOS and Linux. In addition to other changes the new version contains fixes to 32 security vulnerabilities.
More information can be read from Google Chrome releases blog.
Thursday, May 27, 2021
Mozilla Thunderbird Updated
Mozilla have released updated version of their Thunderbird email client containing some fixes to security vulnerabilities.
Affected versions:
- Mozilla Thunderbird earlier than 78.10.2 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading from the product site.
Affected versions:
- Mozilla Thunderbird earlier than 78.10.2 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading from the product site.
Friday, May 14, 2021
Adobe Experience Manager Updated
Adobe has released updated versions of their Experience Manager. Updates fix two vulnerabilities of which one is categorized as critical (CVE-2021-21084) and the other as important (CVE-2021-21083). Successful exploitation of the critical vulnerability could result in arbitrary JavaScript execution in the browser.
Affected versions
Adobe Experience Manager (AEM)
- AEM Cloud Service (CS)
- 6.5.7.0 and earlier
- 6.4.8.3 and earlier
- 6.3.3.8 and earlier
More information from the Adobe's security advisory.
Adobe InDesign Update Available
Adobe have released updated version of Adobe InDesign. The new update resolves critical vulnerabilities (CVE-2021-21098, CVE-2021-21099, CVE-2021-21043) that could be abused to execute code remotely in the context of the current user.
Affected versions:
- Adobe InDesign earlier than 16.2.1
More information can be read from Adobe's security bulletin.
Adobe Illustrator Vulnerabilities Fixed
Adobe have released an updated version of their Adobe Illustrator for Windows. The new version fixes critical vulnerabilities that may allow arbitrary code execution in the context of the current user.
Affected versions
Illustrator 2021 earlier than version 25.2.3
More information in the correspondent security bulletin.
Vulnerability Fixed In Adobe InCopy
Adobe have released a new version of their Adobe InCopy on Windows. The new version fixes a security vulnerability (CVE-2021-21090) that may allow arbitrary code execution in the context of the current user.
Affected versions and solutions
- Adobe InCopy 16.0 and earlier versions
More information can be read from Adobe security bulletin.
Adobe Genuine Service Updated
Adobe have released security updates to fix a vulnerability (CVE-2021-28547) in their Genuine Service. The vulnerability could lead to privilege escalation in the context of the current user.
Affected versions:
Adobe Genuine Service earlier than 7.3 on Windows and macOS
Adobe Genuine Service has a self-update mechanism that runs automatically at a regular interval when the host is connected to the internet.
More information about fixed vulnerability can be read from Adobe's security bulletin.
Magento Vulnerabilities Fixed
Magento has released updates for Magento Commerce and Open Source editions. The new versions fix a bunch of vulnerabilities of which many critical and that may allow arbitrary code execution.
Affected versions
Magento Commerce 2.4.2 and earlier versions
Magento Commerce 2.4.1-p1 and earlier versions
Magento Commerce 2.3.6-p1 and earlier versions
Magento Open Source 2.4.2 and earlier versions
Magento Open Source 2.4.1-p1 and earlier versions
Magento Open Source 2.3.6-p1 and earlier versions
More information in the correspondent security bulletin.
Adobe Creative Cloud Desktop Application Updated
Adobe has released a security update to fix a vulnerability (CVE-2021-28581) in their Creative Cloud Desktop Application for Windows.
Affected versions:
Creative Cloud Desktop Application 5.3 and earlier versions for Windows
More information can be read from Adobe's security bulletin.
Adobe Media Encoder Updated
Adobe have released updated versions of their Media Encoder. The new versions fix one important categorized vulnerability (CVE-2021-28569).
Affected versions:
- Adobe Media Encoder versions earlier than 15.2
More information in related security bulletin.
Adobe After Effects Updated
Adobe have released an update to patch critical vulnerabilities in their After Effects application. The vulnerabilities could allow arbitrary code execution in the context of the current user.
Affected versions:
Adobe After Effects earlier than 18.2 version
More information in security bulletin.
Adobe Medium Updated
Adobe have released an updated version of their Adobe Medium. The new version fixes a critical vulnerability (CVE-2021-28580) that could allow arbitrary code execution in the context of the current user.
Affected versions
Adobe Medium earlier than 2.4.5.332
More information in the correspondent bulletin.
Adobe Animate Updated
Adobe have released an updated version of their Adobe Animate. The new version fixes vulnerabilities of which some could allow arbitrary code execution in the context of the current user.
Affected versions
Adobe Animate earlier than 21.0.6
More information in the correspondent bulletin.
Adobe Reader And Acrobat Security Updates
Adobe have released security updates to fix vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat. Exploiting the vulnerabilities could allow arbitrary code execution in the context of the current user. One (CVE-2021-28550) of the fixed vulnerabilities has been exploited in the wild in limited attacks targeting Adobe Reader users on Windows.
Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
versions earlier than 2021.001.20155
*Acrobat 2020 and Acrobat Reader 2020, 2020 classic track
versions earlier than 2020.001.30025
*Acrobat 2017 and Acrobat Reader 2017, 2017 classic track
versions earlier than 2017.011.30196
Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.
Full version of Adobe Acrobat Reader DC and a trial version of Adobe Acrobat Pro DC can be found here.
More information about fixed vulnerability can be read from Adobe's security bulletin.
Microsoft Security Updates For May 2021
Microsoft have released security updates for May 2021.
Release notes of the updates can be viewed here.
Google Chrome updated
Google have released version 90.0.4430.212 for Windows, macOS and Linux. In addition to other changes the new version contains fixes to 19 security vulnerabilities.
More information can be read from Google Chrome releases blog.
Monday, May 10, 2021
Mozilla Thunderbird Updated
Mozilla have released updated versions of their Thunderbird email client containing a fix to a security vulnerability (CVE-2021-29951).
Affected versions (note: only Windows operating systems older than Win 10 build 1709 are affected):
- Mozilla Thunderbird earlier than 78.10.1 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading from the product site.
Mozilla Firefox Vulnerabilities Fixed
Mozilla have released updated versions of their Firefox web browser. New versions fix security vulnerabilities.
Affected versions:
-Mozilla Firefox earlier than 88.0.1 (advisory)
-Mozilla Firefox ESR 78.x earlier than 78.10.1 (advisory)
Fresh version can be obtained via inbuilt updater or by downloading (latest version) from the product site.
Thursday, May 6, 2021
Foxit Reader And Foxit PhantomPDF Updated
Foxit Software has released version 10.1.4 of their Foxit Reader and Foxit PhantomPDF software for Windows. The new versions contain fixes for security vulnerabilities that if exploited may allow an attacker to execute arbitrary code in target system.
Affected versions:
Foxit Reader 10.1.3.37598 and earlier (Windows)
Foxit PhantomPDF 10.1.3.37598 and all previous 10.x versions, 9.7.5.29616 and earlier (Windows)
More information can be read here.
Updated Version Of Foxit 3D Plugin Beta Available
Foxit Software has released a new version (10.1.4.37623) of their 3D Plugin for Foxit Reader and Foxit PhantomPDF software. The new version contains a fix for a security vulnerability which may lead to information disclosure or remote code execution.
Affected versions:
3D Plugin Beta 10.1.3.37598 and all previous 10.x versions, 9.7.4.29600 and earlier for Foxit Reader and Foxit PhantomPDF (Windows)
More information can be read here.
NVIDIA GPU Display Driver Updates
NVIDIA has released a security update for NVIDIA GPU Display Driver for Windows and Linux. The update contains fixes to multiple vulnerabilities that may lead to code execution, denial of service, escalation of privileges, and information disclosure.
More information can be read from the related security bulletin.
Wednesday, May 5, 2021
New iCloud Version For Windows Released
Apple have released new version of their iCloud client for Windows. New version fix security vulnerabilities.
iCloud for Windows 12.3 is for Windows 10 and later and is available via Windows Store.
More information about the security content of the new version can be read from the correspondent security advisory.
ITunes 12.11.3 For Windows Released
Apple have released version 12.11.3 of their iTunes media player. New version fixes security vulnerabilities.
More information about the security content of iTunes 12.11.3 can be read from related security advisory.
Users of old versions should update to the latest one available.
Subscribe to:
Posts (Atom)
