Non-Microsoft Patches

Latest upgrade to iPhone includes 46 security fixes

Greg Masters June 18, 2009

Apple on Wednesday released the long-anticipated upgrade to its iPhone operating system.
 

Mozilla releases security fixes for Firefox

Chuck Miller June 12, 2009

The Firefox web browser has been patched for security flaws, four of which were identified as "critical" by Mozilla.
 

Adobe patches Reader and Acrobat for "critical" vulnerabilities

Chuck Miller June 09, 2009

In the first of its regular security updates, Adobe on Tuesday patched several "critical" vulnerabilities it has identified in Adobe Reader 9.1.1 and Acrobat 9.1.1, and earlier.
 

New Safari 4.0 fixes more than 50 vulnerabilities

Angela Moscaritolo June 09, 2009

Apple on Monday released web browser Safari 4.0, which contains fixes for more than 50 vulnerabilities.
 

Chrome for Mac, Linux is out, but Google warns of its dangers

June 05, 2009

Google has released versions of its Chrome browser for the Mac OS X and Linux but is warning users not to download either of them.
 

Adobe fixes come Tuesday

Dan Kaplan June 05, 2009

Adobe's first-ever quarterly patch update is planned for Tuesday. The company announced Thursday that it expects to issue patches then for its Reader and Acrobat versions 7, 8 and 9. The move to scheduled updates comes in response to criticism Adobe received earlier this year when it took several months to fix a major zero-day PDF vulnerability in its software. Tuesday's release — and each one after — will coincide with Microsoft's monthly security update. — DK
 

Apple patches QuickTime for 10 security holes

Dan Kaplan June 01, 2009

Apple on Monday released an updated version of its popular QuickTime software.
 

VMware fixes security bugs

Chuck Miller May 29, 2009

VMware has released fixes for multiple vulnerabilities in several of its products, including VMware Workstation, Player, ACE, Server, Fusion, ESX and ESXi. One of the vulnerabilities was caused by an error in the VMware Descheduled Time Accounting driver, which could open a way for hackers to launch a denial-of-service attack in Windows-based virtual machines. Another vulnerability identified by VMware could have enabled an attacker to execute arbitrary code. — CAM
 

BlackBerry patches PDF flaws

Angela Moscaritolo May 27, 2009

Research In Motion on Tuesday issued a security software update to address multiple vulnerabilities that exist in the PDF Distiller of the BlackBerry Attachment Service component in BlackBerry Enterprise Server. Because of these vulnerabilities, an attacker could create a malicious PDF file, which when opened on a BlackBerry smartphone, could corrupt memory or execute arbitrary code on the computer that hosts the BlackBerry Attachment Service, RIM said in its advisory. — AM
 

Adobe to issue scheduled patches, invest more in code review

Dan Kaplan May 20, 2009

Adobe, responding to widespread industry criticism that it was not effectively reacting to issues, unveiled on Wednesday a new approach to securing code and patching flaws.
 

Researcher publishes Java proof-of-concept to urge Apple action

Dan Kaplan May 19, 2009

Calling Apple's patching process "opaque," a security researcher has decided that publishing a proof-of-concept exploit is the best way to force the computing giant to fix a months-old flaw.
 

"Gumblar" website compromises increase 188 percent this week

Angela Moscaritolo May 14, 2009

Thousands of legitimate websites have been infected since late March with code that is silently infecting visitors with malware. And as of this week, the number of compromised websites has skyrocketed.
 

Massive security updates released for Apple computers

Chuck Miller May 13, 2009

In one of its largest security updates this year, Apple has announced a series of patches for its Mac OS X to address more than 60 vulnerabilities, some of which could enable malicious hackers to remotely hijack Macintosh computers.
 

Adobe's PDF vulnerability patched

Angela Moscaritolo May 12, 2009

Security researchers say Adobe's PDF vulnerability, which was fixed Tuesday, is more of a pressing issue than Microsoft's PowerPoint vulnerabilities fixed the same day.
 

Adobe attacks most common

Dan Kaplan May 07, 2009

Adobe Acrobat and Reader have assumed the roles of most commonly targeted file types to install malware this year, F-Secure said Wednesday. The security firm studied 663 attack files and determined that 49 percent involved the popular PDF reader software, while 39 percent were aimed at Microsoft Word. Last year, Word was targeted in 35 percent of 1,968 attacks, and the Adobe products made up 29 percent of file exploits. F-Secure attributed the shift to this year's two widely publicized Adobe zero-day exploits. — DK
 

Adobe PDF vulnerability fix slated for May 12

Dan Kaplan May 04, 2009

Adobe said it plans to release an update by May 12 for the recently disclosed Reader and Acrobat vulnerability.
 

Adobe confirms new flaw, recommends turning off JavaScript

Dan Kaplan April 29, 2009

Adobe has confirmed a vulnerability in its widely used Reader and Acrobat products, and is recommending users disable JavaScript to stay protected.
 

Adobe grappling with another PDF vulnerability

Dan Kaplan April 28, 2009

Less than two months after issuing a fix for a much-talked-about Adobe Reader vulnerability, the company again is dealing with a zero-day issue in its popular software.
 

Another Firefox update

Chuck Miller April 27, 2009

Less than a week after Mozilla updated its Firefox browser, a new version has been released. Firefox 3.0.10 was prompted because one of the security fixes in Firefox 3.0.9 introduced a problem that caused some users to experience frequent crashes, according to the new version's release notes. The crashes were due to memory corruption that appeared to be exploitable. — CAM
 

Security update for Firefox

Chuck Miller April 22, 2009

A new version of the popular web browser Firefox (3.0.9) addresses multiple vulnerabilities, such as POST data being sent to the wrong site when saving web pages, allowing malicious search plug-ins to inject code into arbitrary sites, and cross-site scripting hazards when using third-party stylesheets. Exploitation of these vulnerabilities could enable an attacker to execute arbitrary code, leverage additional attacks, or obtain sensitive information, according to US-CERT. — CAM
 

Mac attack: Bot herders going after Apple computers

Greg Masters April 17, 2009

Bot herders have found a way to infest Mac computers: via pirated software.
 

Oracle patches for high-severity flaws

Chuck Miller April 15, 2009

Oracle has issued security patches for a number of its products, including several fixes that were rated as "high" severity.
 

VMware patches new critical security vulnerability

Chuck Miller April 10, 2009

VMware has issued patches for a critical security vulnerability in its ESX and ESXi virtualization products.
 

Firefox flaw fixed

Chuck Miller March 27, 2009

Mozilla has addressed a notorious zero-day vulnerability discovered Wednesday that could have caused execution of malicious code if exploited. With the flaw, attackers could have modified Firefox source code. In its release notes for version 3.0.8, Mozilla identified the problem as an XSL parsing "root" XML tag remote memory corruption vulnerability, and lists the bug as "Resolved." — CAM
 

"High-priority" Firefox patch being readied

Greg Masters March 26, 2009

A new patch for Firefox is being readied for shipment early next week to fix a vulnerability detected on Wednesday.
 

Cisco releases security updates for IOS

Chuck Miller March 25, 2009

Security updates for Cisco Internetwork Operating System were released Wednesday to shield against a number of vulnerabilities.
 

Adobe describes fix

Dan Kaplan March 25, 2009

Adobe has released details surrounding its latest update for Reader and Acrobat. The fix actually corrected six separate JBIG2 vulnerabilities in the company's flagship PDF software, according to an updated security bulletin released Tuesday. Adobe first updated version 9 on March 10, then a week later issued an upgrade for versions 7 and 8. On Tuesday, Adobe also issued Reader updates for Unix platforms. Unpatched users could be hit with remote attacks. — DK
 

Sun delivers fixes

Dan Kaplan March 24, 2009

Sun has patched for several vulnerabilities in its Java System Identity Manager. Rated "highly critical" by vulnerability tracking service Secunia, the flaws impact versions 7 and 8. The bugs could be exploited to allow for security bypass, cross-site scripting, data manipulation, information exposure, privilege escalation and system access, according to Secunia. Sun advised users to install the pertinent patches, which were distributed Monday. — DK
 

More Adobe security updates

Angela Moscaritolo March 18, 2009

Adobe on Wednesday issued updates for Adobe Reader and Acrobat versions 7 and 8 for Windows and Mac that address a buffer overflow vulnerability that is currently being exploited in the wild. The long-awaited updates for version 9 were issued last week. Users are advised to update to Acrobat and Reader versions 9.1, 8.1.4, or 7.1.1. Adobe said it plans to release updates for Unix by March 24. — AM
 

Patch finally here for critical Adobe zero-day

Angela Moscaritolo March 11, 2009

One day ahead of schedule -- but too late to silence all critics -- Adobe on Tuesday delivered a much-anticipated fix for its Reader and Acrobat products.
 

Latest News

« Previous
Next »
Popular Topics
Analyst Reports & Industry Surveys Anti Spam Anti Virus Application Security Breaches & Exposures Browser Flaws Browsers And Security CAN-SPAM Act Compliance Data Loss Prevention Data Theft Security DDoS Endpoint Protection External Threats Facebook Government Industry Surveys Lawbreakers & Cybercrime Malware Privacy Social Networks Spam Spam Techniques Trojans Vulnerabilities & Flaws