Tag Archives: software patches and updates← Older posts
BACKGROUND There is a vulnerability in Adobe Flash that is being exploited in large scale attacks. The vulnerability is being tracked as CVE-2014-0569 (http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0558) on the Common Vulnerabilities and Exposures (CVE) database. The exploit includes memory corruption vulnerabilities and an integer overflow vulnerability that … Continue reading
Please note the following updates to the September 25 post regarding the Bash / Shellshock vulnerability.
Today is Patch Tuesday for July, 2014. Microsoft released 6 bulletins, two of which are considered critical and address vulnerabilities in Windows and Internet Explorer that could result in remote code execution. For more information about this month’s updates, see … Continue reading
Security researchers have recently identified several vulnerabilities in the OpenSSL encryption library in addition to the widely publicized Heartbleed bug (see https://it-security.usc.edu/2014/04/09/openssl-heartbleed-bug for more information about Heartbleed). System Administrators within USC’s IT units should complete the action items (fixes) summarized … Continue reading
Today is Patch Tuesday for November 2013. Microsoft released eight bulletins, three of which are considered critical. The bulletins include fixes for vulnerabilities affecting Windows, Internet Explorer, and Microsoft Office. For more information, see the Microsoft Security Bulletin Summary for November … Continue reading
Apple this week released a major upgrade to its desktop operating system. OSX version 10.9, or Mavericks, includes a number of new and updated features, performance improvements, and security fixes. To learn more about the new features in Mavericks, visit www.apple.com/osx/whats-new/features.html. … Continue reading
Oracle yesterday released its Critical Patch Update for October 2013. The update includes 127 security fixes for more than a dozen products, including fifty-one fixes for Java. Apple also released an update to its supported version of Java.
ITS highly recommends that users of Windows XP upgrade to a more recent version of the operating system before its end of support date on April 8, 2014. If you are still using the Windows XP operating system, there are … Continue reading
On Patch Tuesday for August 2013, Microsoft released eight security bulletins, three of which are considered critical. The critical bulletins include a cumulative security update for all supported versions of Internet Explorer and fixes for vulnerabilities in Microsoft Exchange Server … Continue reading
Today is Patch Tuesday for July 2013. Microsoft released seven security bulletins for Windows, Internet Explorer, and several other products. Six of the bulletins fix vulnerabilities that are considered critical as they could allow remote code execution on your machine. For … Continue reading