November 2018 Patch Tuesday – 62 Vulns, TFTP Server RCE, Adobe PoC

November 2018 Patch Tuesday – 62 Vulns, TFTP Server RCE, Adobe PoC

This month’s Patch Tuesday addresses 62 vulnerabilities, with 12 of them labeled as Critical. Out of the Criticals, 8 are for the Chakra Scripting Engine used by Microsoft Edge. A Remote Code ...
Adobe patches critical flaws in many of its software offerings

Adobe patches critical flaws in many of its software offerings

Adobe has released important patches for almost its entire array of offerings, including the Technical Communications Suite, Experience Manager, Digital Editions, Acrobat and Reader, as well as the notoriously buggy Flash Player ...

Tripwire Patch Priority Index for September 2018

Tripwire’s September 2018 Patch Priority Index (PPI) brings together the top vulnerabilities from Microsoft and Adobe. First on the patch priority list this month are patches for Microsoft’s Internet Explorer, Edge and ...
September 2018 Patch Tuesday – 61 Vulns, FragmentSmack, Hyper-V Escape

September 2018 Patch Tuesday – 61 Vulns, FragmentSmack, Hyper-V Escape

In this month’s Patch Tuesday release there are 61 vulnerabilities patched with 17 Criticals. Out of the criticals, most are browser-related, with the rest including Windows, Hyper-V, and .net Framework. A vulnerability ...

July Patch Tuesday – Critical browser patches, Lazy FP, Exchange, Adobe vulns

This month’s Patch Tuesday is medium in weight, with 54 CVEs containing 17 Criticals. All but two of the Critical vulnerabilities are in Microsoft’s browsers or browser-related technologies. An additional speculative execution ...

June Patch Tuesday – new Speculative Store Bypass fixes, Adobe vulns

June’s Patch Tuesday is lighter weight compared to previous months. In all, 51 unique CVEs are addressed, with 11 CVEs marked as Critical. Adobe also released an out-of-band update for a Flash ...

Signal Patches Code Injection Bug that Enabled Remote Code Execution

Signal patched a code injection vulnerability that by some means of exploitation enabled attackers to achieve remote code execution. The security team for the encrypted communications app, a program which has been ...
Cisco rolls out new wave of must-install WebEx patches

Cisco rolls out new wave of must-install WebEx patches

Cisco has released several patches for users of WebEx clients and its Access Control System, all of which are mandatory if users want to keep using the products safely. The release comes ...
Intel Won't Patch Spectre on All CPUs

Intel Won’t Patch Spectre on All CPUs

Intel does not plan to release microcode updates for older generations of processors that are affected by the Spectre vulnerability, either because patching is not practical and for other reasons. The company ...
Security Boulevard
More OEMs Pull Spectre Patches As Intel Confirms Reboot Issues

More OEMs Pull Spectre Patches As Intel Confirms Reboot Issues

| | Intel, Meltdown, patch, Spectre
HP and Dell, two of the largest server and enterprise workstation manufacturers, have stopped distributing BIOS/UEFI updates that include Intel’s CPU microcode patches for the Spectre vulnerability. The companies now advise customers ...
Security Boulevard
Loading...