Recent Comments

    Blogroll

    Search

    Archive for Patches

    Security Mailer (2020 # 3)

    January 20th, 2020 by

    Security mailer Volume 20 Number 3

    • Adobe
      • Security bulletins
      • Updates for Experience Manager and Illustrator
    • Cisco Security Advisories
    • Linux updates and patches
    • Microsoft Tuesday
      • Patch for 0-day that has exploit code available
      • Security Advisories
      • Security bulletin revisions
      • New Microsoft Edge browser released
    • General Security reviews last week
    • Wireshark updates released

    Posted in Newsletters, Patches, Updates | No Comments »

    Security Mailer (2020 #2)

    January 13th, 2020 by

    Security Mailer Volume 20 Number 2

    • Browsers
      • 0-day updates for
        • Firefox
        • Firefox ESR
        • Thunderbird,
        • Firefox to drop TLS 1.1 and earlier
        • Firefox for Android
    • Cisco security advisories
    • Linux updates & patches
    • Microsoft Windows 7 free support ends next week
    • General Security reviews last weeks vulnerabilities

    Posted in Newsletters, Patches, Updates | No Comments »

    Security Mailer (2020 #1)

    January 5th, 2020 by

    Security Mailer Volume 20 Number 1

    • Cisco security advisories
    • Linux update and patche
    • General security review of last weeks vulnerabilities

    Posted in Newsletters, Patches, Updates | No Comments »

    Google will block less secure apps (LSAs) from accessing G Suite

    December 17th, 2019 by

    Google to Force OAuth in G Suite to Increase Security

    “Google announced that it will block less secure apps (LSAs) from accessing G Suite account data starting February 2021, following an initial stage of limiting their access during June 2020.

    This announcement follows the removal of the “Enforce access to less secure apps for all users” setting from the Google Admin console on October 30, 2019.

    LSAs are non-Google apps that access Google accounts using only a username and password pair and thus exposing users who use them to account hijacking attacks.”

    Posted in Patches, Updates | No Comments »

    Some useful Patch Tuesday Resources

    December 11th, 2019 by

    Thanks to Susan Bradley  for posting this

    “Microsoft’s official Security Update Guide portallists all security updates in a filterable table.

    • ZDNet also put together this pagelisting all security updates on one single page, in one place.
    • Additional analysis of today’s Patch Tuesday is also available from Cisco Talosand Trend Micro.
    • This month’s Adobe security updates are detailed here.
    • SAP security updates are detailed here.
    • Intel security updates are available here.
    • The Android Security Bulletin for December 2019 is detailed here. Patches started rolling out to users’ phones last week.
    • new version of Google Chromehas also been released today.
    • Apple has also released today security updates for iOS and iPadOS 13.3.”

     

    Posted in Patches, Updates | No Comments »

    October 3, 2019—KB4524150 (OS Build 16299.1421)

    October 4th, 2019 by

    MS identified a printing problem:

    Windows 10 1903 KB4522016 Cumulative Update Breaks Printing

    Looks like MS has re-released an out-of-band update to fix a couple of problems.

    October 3, 2019—KB4524150 (OS Build 16299.1421)

    IMPORTANT This is a required security update that expands the out-of-band update dated September 23, 2019. This security update includes the Internet Explorer scripting engine security vulnerability (CVE-2019-1367) mitigation and corrects a recent printing issue some users have experienced. Customers using Windows Update or Windows Server Update Services (WSUS) will be offered this update automatically. To help secure your devices, we recommend that you install this update as soon as a possible and restart your PC to fully apply the mitigations. Like all cumulative updates, this update supersedes any preceding update.

    Note This update does not replace the upcoming October 2019 monthly update, which is scheduled to release on October 8, 2019.

    Posted in Patches, Updates | No Comments »

    Security Mailer (2019 #35)

    September 1st, 2019 by

    Security Mailer Volume 19 Number 35

    • Apple
      • Emergency update for iOS
      • Other security updates;
      • Browser updatesPale Moon
      • Chrome
    • Cisco Security Advisories
    • Linux updates
    • General Security section review of last week

    Posted in Newsletters, Patches, Updates | No Comments »

    Apple releases iOS 12.4.1 to Patch Security Flaw

    August 27th, 2019 by

    Apple Releases iOS 12.4.1 to Patch Security Flaw Behind Jailbreak

    “Apple released iOS 12.4.1 today to fix a security flaw reintroduced with the release of iOS 12.4, and used by security researcher Pwn20wnd to develop and release a jailbreak tool for up-to-date iOS devices.

    The vulnerability patched today by Apple is a use after free tracked as CVE-2019-8605 targeted by the Sock Puppet exploit that was used to create jailbreak tools for iOS devices.”

    Posted in Patches, Smart Phones, Updates | No Comments »

    ESET Total Disk Encryption has a problem with Windows 10 (1903)

    June 21st, 2019 by

    ESET TDE (aka Deslock aka Endpoint Encryption), doesn’t like 1903

    Apparently, the ESET Total Disk Encryption can cause “”Inaccessible Boot Device” to occur. This post from their support folks describes what to do to avoid or fix the problem.

    • If you have not upgraded to Windows 1903 and you would like to prevent Windows from updating,
    • If you have recently upgraded to Windows 1903 and your machine is currently booting correctly but you want to avoid this problem
    • If you have recently upgraded to Windows 1903 and your machine no longer boots correctly

    Posted in Patches, Updates | No Comments »

    Mozilla Foundation Security Advisory 2019-18

    June 19th, 2019 by

    Security vulnerabilities fixed in Firefox 67.0.3 and Firefox ESR 60.7.1

    A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow for an exploitable crash. We are aware of targeted attacks in the wild abusing this flaw.

    Posted in Patches, Updates | No Comments »

    « Previous Entries