|
Home > News > Tags > vulnerability patch
|
|
30
Stories about: vulnerability patch |
|
|
More: next 50 >>
Google has released a security update for its Chrome browser in order to address many security vulnerabilities, including a rare critical one.The new Chrome 13.0.782.215 version fixes a total number of 11 security flaws, nine of which are rated as high severity, one medium and one critical.Three of the patched vulner... |
23 August 2011
08:57 GMT |
 |
|
Several security issues have been addressed in version 2.10.0 of the Pidgin instant messaging application, which could be exploited to trigger a denial of service condition or compromise the system.The vulnerability that can have the most serious impact stems from the IM client previously executing files when users c... |
22 August 2011
10:57 GMT |
|
|
Mozilla has released security updates for Thunderbird and SeaMonkey in order to address critical vulnerabilities in the two products that could be exploited to compromise computers.The newly released Thunderbird 6, Thunderbird 3.1.12 and SeaMonkey 2.3 fix a total of thirteen security flaws in the Gecko layout engine ... |
17 August 2011
06:19 GMT |
|
|
Google has released a new version of its Chrome browser in order to update the bundled Flash Player plug-in with vulnerability patches."The Chrome Beta and Stable channels have been updated to 13.0.782.112 which includes an updated version of Flash Player," Google announced yesterday.Both Adobe and the Google Chrome ... |
9 August 2011
12:38 GMT |
|
|
The newly released Apple QuickTime 7.7 addresses a number of critical vulnerabilities, most of which can be exploited to execute arbitrary code on targeted systems.The new QuickTime version is available for Mac OS X v10.5.8, Mac OS X Server v10.5.8, Windows 7, Vista, and XP SP2 or later.In total, fourteen vulnerabili... |
4 August 2011
13:12 GMT |
|
|
The phpMyAdmin development team has released new versions of the popular web-based database management tool in order to patch several vulnerabilities, including two marked as critical.In total there were four security holes patched in the newly released phpMyAdmin 3.4.3.2 and phpMyAdmin 3.3.10.3, with a possible impa... |
25 July 2011
12:55 GMT |
|
|
RIM has released security updates for its BlackBerry Enterprise Server (BES) product in order to address an information disclosure and denial of service flaw.The vulnerability, CVE-2011-0287, is located in the BlackBerry Administration API component which passes requests to the BlackBerry Administration Service."A vu... |
18 July 2011
03:31 GMT |
|
|
The Internet Systems Consortium (ISC) has released security updates for the BIND DNS daemon in order to address two serious vulnerabilities that can crash servers."A defect in the affected BIND 9 versions allows an attacker to remotely cause the "named" process to exit using a specially crafted packet. This defect af... |
5 July 2011
14:20 GMT |
|
|
The WordPress development team has released version 3.1.4 of the popular blogging platform in order to address several vulnerabilities and security issues.The new release fixes a privilege escalation weakness that allows users with Editor levels to gain higher access to the site than usual.WordPress developers credit... |
30 June 2011
04:06 GMT |
|
|
Apple has released security updates for the Java packages in Mac OS X 10.5 and 10.6 in order to address critical security vulnerabilities patched by Oracle earlier this month.Oracle released Java SE 1.6.0_26 for Windows, Linux and Solaris on June 7, fixing a total of seventeen vulnerabilities, nine of which carried a... |
29 June 2011
06:57 GMT |
|
|
Google has released a new version of Google Chrome in order to address several high-risk vulnerabilities and update the bundled Flash Player plug-in.The new 12.0.742.112 version contains fixes for a number of seven security flaws, six of which are rated with a high impact and one with medium.Regular Chrome security c... |
29 June 2011
05:46 GMT |
|
|
The Pidgin development team has released version 2.0.9 of the popular instant messaging application in order to address a remotely-exploitable denial-of-service vulnerability.Identified as CVE-2011-2485, the vulnerability was discovered by Mark Doliner and allows an attacker to crash a user's application by simp... |
27 June 2011
11:45 GMT |
|
|
Mozilla has released its new Firefox 5 browser, as well as updates for Thunderbird and the older Firefox 3.6 branch, which address critical security vulnerabilities.A total of eight vulnerabilities were fixed in Firefox 5, five of which are rated as critical, two as moderate and one as low, in terms of severity.One p... |
21 June 2011
14:35 GMT |
|
|
Adobe has released a security update for Shockwave Player in order to address critical security vulnerabilities that could be exploited to execute malicious code.A total number of 25 critical vulnerabilities, all of which can lead to arbitrary code execution, have been fixed in the newly released Adobe Shockwave Play... |
15 June 2011
12:57 GMT |
|
|
Siemens has released a firmware update for its SIMATIC S7-1200 product in order to address two vulnerabilities that can be exploited to intercept data or crash the programmable logic controller (PLC).The first weakness allows potential attackers to record communications transmitted by the engineering software to the ... |
14 June 2011
14:45 GMT |
|
|
Google has just released the first stable build of Chrome 12 which addresses many vulnerabilities and brings several new security enhancements.A total number of fourteen security flaws have been patched in the new Chrome 12.0.742.91 build, in addition to the ones fixed during the development cycle.Five of the vulnera... |
7 June 2011
12:37 GMT |
|
|
The VideoLAN project has released version 1.1.10 of VLC media player in order to address several highly critical vulnerabilities that could be exploited to execute arbitrary code remotely.Two of the patched vulnerabilities were disclosed at the beginning of last month as zero-days and were accompanied by proof-of-con... |
6 June 2011
10:31 GMT |
|
|
Microsoft is planning to patch a recently disclosed IE vulnerability that facilitates session hijacking attacks and suggests using the browser's private mode feature until then.The new type of attack, dubbed cookiejacking, was demonstrated at the recent Hack in the Box 2011 conference in Amsterdam by Italian sec... |
30 May 2011
06:05 GMT |
|
|
The WordPress development team has released version 3.1.3 of the popular blog publishing platform which fixes several security issues and introduces clickjacking protection.A moderately critical vulnerability that allows attackers to execute rogue PHP code on servers with certain configurations has been patched.The f... |
26 May 2011
04:52 GMT |
|
|
Google has released a new security update for Chrome in order to address several vulnerabilities, two of which are rated as critical.The new Google Chrome 11.0.696.7 contains fixes for a total of four security flaws, one rated as low, one high and two as critical.The low severity vulnerability (CVE-2011-1801) was dis... |
25 May 2011
03:59 GMT |
|
|
Google has updated Chrome to version 11.0.696.68 in order to address two high-risk vulnerabilities and include the new Flash Player 10.3 plug-in.Both vulnerabilities were discovered internally by members of the Google Chrome Security Team so no rewards were offered in this release.One of the flaws, CVE-2011-1799, con... |
13 May 2011
10:55 GMT |
|
|
Adobe has released the first stable versions of Flash Player 10.3, which addresses many critical vulnerabilities and integrates with browser privacy controls.A number of eleven security flaws were patched, ten of which can lead to arbitrary code execution. The other one was a design flaw that could have resulted in i... |
13 May 2011
07:25 GMT |
|
|
The WordPress development team has released version 3.1.2 of the popular blogging platform in order to address a privilege escalation issue affecting post publishing.According to the release announcement, the flaw allowed Contributor-level users to improperly publish posts.The security hole was located in press-this.... |
27 April 2011
13:55 GMT |
|
|
Google has released version 11.0.696.57 of its Google browser which addresses a large number of vulnerabilities and sets a new record for the amount of money paid to security researchers as reward in a single update. A total number of 27 vulnerabilities were patched in this release, 18 of which are rated with hig... |
27 April 2011
12:54 GMT |
|
|
Adobe has released a security update for Flash Player in order to address an arbitrary code execution vulnerability actively exploited in the wild since last week.The critical vulnerability was confirmed by Adobe on April 11, after having been spotted in targeted email attacks by security reasearchers.The rogue email... |
16 April 2011
03:54 GMT |
|
|
Google has released a new stable update for Chrome to address several vulnerabilities in the browser itself, as well as in the bundled Flash Player plug-in.The new Chrome 10.0.648.205 version fixes three critical flaws, which is a bit unusual because critical bugs are a relatively rare occurrence in Google's bro... |
15 April 2011
02:51 GMT |
|
|
The Ruby on Rails development team has released an update for the web application framework which addresses a cross-site scripting (XSS) vulnerability.The new Rails 3.0.6 version contains multiple bug fixes and changes in addition to the security patch and comes after two release candidates.The XSS vulnerability affe... |
6 April 2011
11:54 GMT |
|
|
Adobe has released security updates for Adobe Reader and Acrobat to address a zero-day vulnerability in the bundled Flash Player component.The vulnerability is identified as CVE-2011-0609 and was confirmed last Monday after attacks were detected exploiting it in the wild.The flaw affects Adobe Flash Player and can be... |
22 March 2011
10:01 GMT |
|
|
The PHP development team has released PHP 5.3.6 in order to address security issues and fix many bugs that affect the software's stability.The new version patches a total of five vulnerabilities, the most dangerous of which could allow for remote code execution, and also makes one security enhancement.One of the... |
21 March 2011
11:56 GMT |
|
|
Apple has released Java security updates for Mac OS X v10.6.6 and Mac OS X v10.5.8 in order to address multiple vulnerabilities that could be exploited to execute arbitrary code.The new updates patch vulnerabilities in Java 1.6.0_22 and Java 1.5.0_26 by updating the runtime's version to 1.6.0_24 or 1.5.0_28, res... |
9 March 2011
08:58 GMT |
|
|
The first stable build of Google Chrome 10 has been released and contains significant security improvements, including patches for numerous vulnerabilities.The new Google Chrome 10.0.648.127 is the first version of the browser to automatically disable outdated plug-ins by default, a feature first announced in June la... |
8 March 2011
11:36 GMT |
|
|
Less then a week after releasing the first Chrome 9 stable version, Google just pushed out a security update to address several security vulnerabilities in the browser.The new 9.0.597.94 build has been released to the stable channel for all platforms and also contains Flash Player 10.2.Starting with Chrome 9, the bun... |
8 February 2011
13:30 GMT |
|
|
The VideoLAN project has released version 1.1.7 of VLC media player in order to address a critical vulnerability which allows for arbitrary remote code execution.The vulnerability was announced in an advisory at the beginning of this week after patches have been submitted to the VLC source code repository.The flaw is... |
3 February 2011
09:11 GMT |
|
|
The Tor Project has released version 0.2.1.29 of its anonymization software to address several security issues including a critical vulnerability that can potentially result in arbitrary code execution.Identified as CVE-2011-0427, the critical flaw consists of a heap overflow bug which can be exploited remotely to cr... |
17 January 2011
08:58 GMT |
|
|
A zero-day vulnerability which allowed attackers to install a backdoor in the ProFTPD source code packages last month has been patched in the newly released 1.3.3d version.ProFTPD is one of the most popular open source FTP server implementations. It is designed to run on most *NIX flavored operating systems, such as ... |
21 December 2010
12:30 GMT |
|
|
The newly released Opera 11 brings a lot of enhancements and bug fixes, but also addresses several vulnerabilities that carry a high severity rating.The new iteration of the Norwegian browser features a long-awaited extensions API and a new tab management model dubbed "stacking."On the security side, Opera 11 fixes a... |
17 December 2010
11:08 GMT |
|
|
RealNetworks has patched a number of 27 vulnerabilities affecting RealPlayer 11, RealPlayer SP and RealPlayer Enterprise, most of which allow for remote code execution and carry a critical security risk.Many of the vulnerabilities are buffer overflows that are triggered when parsing malformed files of different forma... |
13 December 2010
13:09 GMT |
|
|
Mozilla has released Thunderbird 3.1.7, 3.0.11 and SeaMonkey 2.0.11 as stability and security updates, which fix multiple critical vulnerabilities that can lead to arbitrary code execution.The new Thunderbird version contains patches for a total of five vulnerabilities rated as critical, which are covered in three a... |
10 December 2010
07:15 GMT |
|
|
WordPress 3.0.3 has just been released as a security update to address a vulnerability that makes it possible for low-level users to edit or delete posts without authorization. The vulnerability is located in the remote publishing interface, which allows users to edit content from desktop or mobile applications w... |
9 December 2010
07:59 GMT |
|
|
Apple has released version 4.1 of the software powering its Apple TV (2nd generation) product, which addresses critical security issues in several components.Five vulnerabilities, the most severe of which can allow for the execution of arbitrary code on the system, were identified and patched in the FreeType font eng... |
23 November 2010
08:22 GMT |
|
|
Apple has released new versions of its Safari browser in order to address a significant number of vulnerabilities, many of which allow for arbitrary code execution.Apple's newly published security advisory mentions 27 flaws discovered and patched in Safari 4 and 5 for Mac and Safari 5 for Windows.The new version... |
19 November 2010
02:22 GMT |
|
|
Adobe has released version 2.5.1 of its Adobe AIR product in order to address critical vulnerabilities, including a zero-day one, patched in Flash Player earlier this month.Adobe AIR is a runtime environment, which can be used to build rich internet applications (RIA) in Flash, Flex, HTML and AJAX.The runtime is norm... |
15 November 2010
05:50 GMT |
|
|
Adobe has released Flash Player 10.1.102.64, a security update that fixes eighteen vulnerabilities, including one actively exploited in the wild since last week.In total, fourteen critical memory corruption flaws, which could lead to arbitrary code execution, have been addressed in the newly released version, one of ... |
5 November 2010
03:24 GMT |
|
|
The Ruby on Rails development team has released security updates for the web application framework, which address a serious vulnerability facilitating unauthorized record manipulation.The issue stems from the way nested attributes were handled in the latest Ruby on Rails versions, 3.0.0 and 2.3.9."An attacker could m... |
15 October 2010
09:08 GMT |
|
|
Oracle has released a major batch of security fixes to address a total of 85 vulnerabilities, that affect software from twenty of its product families.The Oracle Database Server was affected by seven vulnerabilities, one of which is remotely exploitable without authorization.The affected Oracle Database versions are ... |
13 October 2010
12:21 GMT |
|
|
The newly released Opera 10.63 addresses several same-origin policy issues, that can lead to cross-site scripting attacks and theft of sensitive information.In total, there are five vulnerabilities fixed in the new Opera version, four stemming from failure to properly detect a resource's origin and one involving... |
13 October 2010
02:26 GMT |
|
|
Adobe announced October 5 as a definitive release date for its upcoming Adobe Reader and Acrobat quarterly security updates, which will address two zero-day vulnerabilities.On September 8, Adobe confirmed that a critical arbitrary code execution exists in the latest versions of Adobe Reader and Acrobat, after discove... |
1 October 2010
09:39 GMT |
|
|
Microsoft has released an out-of-band patch in order to address a serious information disclosure vulnerability affecting ASP.NET applications, which was being exploited in the wild since last week.Identified as CVE-2010-3332 in the Common Vulnerabilities and Exposures (CVE) database, the flaw was disclosed as a zero-... |
29 September 2010
07:08 GMT |
|
|
Adobe has released Flash Player 10.1.85.3 in order to address a critical remote code execution vulnerability that was being actively exploited in the wild.Last Monday, on September 13, Adobe warned customers that a previously unknown vulnerability has been identified in the latest version of Flash Player for all oper... |
21 September 2010
02:09 GMT |
|
|
Google has pushed Chrome 6.0.472.59 to the Stable and Beta channels for Windows, Mac, Linux and Google Frame, addressing multiple high risk vulnerabilities in the open source browser.One of the patched bugs is marked as critical, but only affects Chrome on the Mac platform. It was discovered by Sergey Glazunov, a reg... |
15 September 2010
04:15 GMT |
|
More: next 50 >> |
|
|
Find us on Google+
