Patches

Apple's iOS 7.1.1 fixes Webkit bugs, encryption bypass issue

By

Released Tuesday, the update prevents exploit via "triple handshake" attacks, which could allow a bypass of encryption safeguards.

Apple ships Mac OS X updates, fixes several code execution bugs

Apple ships Mac OS X updates, fixes several code execution bugs

By

Among the addressed vulnerabilities, was a bug affecting WindowServer, which could allow an attacker to execute malicious code outside the sandbox.

Oracle fixes 104 flaws in quarterly update, addresses Heartbleed bug

Oracle fixes 104 flaws in quarterly update, addresses Heartbleed bug

By

Oracle's Critical Patch Update (CPU) plugged 37 holes in the popular Java browser plug-in.

Vulnerable organizations respond to encryption-breaking 'Heartbleed Bug'

Vulnerable organizations respond to encryption-breaking 'Heartbleed Bug'

By

Organizations vulnerable to the SSL/TLS encryption-breaking Heartbleed Bug, a critical vulnerability in widely used versions of the OpenSSL library, are updating quickly.

Critical Adobe Flash Player vulnerabilities addressed in Tuesday update

By

A Tuesday update addresses critical Adobe Flash Player vulnerabilities that could allow an attacker to take control of Windows, Macintosh and Linux systems.

Microsoft releases final fixes for Windows XP, Office 2003

Microsoft releases final fixes for Windows XP, Office 2003

By

This month's Patch Tuesday marks the end of support for the dated, but widely used, products.

Microsoft previews last Patch Tuesday update for Windows XP

Microsoft previews last Patch Tuesday update for Windows XP

By

The company also revealed that a zero-day flaw in Word 2010 will be patched next week.

Apple's Safari update addresses 27 vulnerabilities

By

Apple's Tuesday update to Safari 7.0.3 and 6.1.3 fixes 27 vulnerabilities, most of which can enable arbitrary code execution.

Microsoft warns of attacks leveraging Word zero-day, releases temporary fix

Microsoft warns of attacks leveraging Word zero-day, releases temporary fix

By

The zero-day vulnerability is a remote code execution flaw in Word 2010.

Unpatched servers still enabling exploitation of two-year-old PHP vulnerability

Unpatched servers still enabling exploitation of two-year-old PHP vulnerability

By

A PHP vulnerability originally disclosed in March 2012 - and revised in October 2013 after a hacker found an easier way to take advantage of the exploit - is still impacting users after all these years.

Apple TV 6.1 released, patches 31 bugs impacting viewers

By

The tech giant addressed numerous bugs in Webkit, a software component that powers its Safari web browser.

Apple's iOS 7.1 fixes 41 bugs, including numerous Webkit flaws

By

Nineteen bugs in web browser engine Webkit were addressed with the update.

Microsoft's Patch Tuesday release fixes 23 bugs, including IE zero-day

Microsoft's Patch Tuesday release fixes 23 bugs, including IE zero-day

By

This month, five security updates, two which are rated "critical," address vulnerabilities in Windows, IE, and Silverlight.

Patch Tuesday fix coming for Internet Explorer zero-day vulnerability

Patch Tuesday fix coming for Internet Explorer zero-day vulnerability

By

Microsoft will be delivering five updates on upcoming Patch Tuesday, two of which are deemed critical, which means the vulnerabilities can be exploited to allow for code execution without any user interaction.

Adobe releases another zero-day fix for Flash

By

According to FireEye, the flaw was being actively exploited to target foreign policy and defense organizations.

Microsoft issues temporary fix for IE zero-day targeting service members

Microsoft issues temporary fix for IE zero-day targeting service members

By

On Wednesday, the tech giant provided the "Fix it" solution, or temporary workaround, for the remote code execution bug.

Adobe patches critical Shockwave flaws allowing remote control of system

By

The player has been updated to version 12.0.9.149 for Windows and Mac systems.

Microsoft addresses 31 bugs on Patch Tuesday, adds last-minute fixes

Microsoft addresses 31 bugs on Patch Tuesday, adds last-minute fixes

By

Between Microsoft's Patch Tuesday preview and today, two critical patches for IE and Windows were added to the lineup.

Microsoft to release five fixes and restrict MD5 hash on Patch Tuesday

Microsoft to release five fixes and restrict MD5 hash on Patch Tuesday

By

Microsoft's upcoming Patch Tuesday will bring five fixes, two of them deemed critical, and also an update that will restrict the use of certificates with MD5 hash.

Google expands bug bounty program, continuing efforts to secure Chrome

By

Google has expanded its vulnerability reward program to include Chrome apps and extensions that were developed directly by the internet and technology company, as well as upped bounties offered for its Patch Reward Program.

Mozilla releases Firefox 27, addressing four critical vulnerabilities

Mozilla releases Firefox 27, addressing four critical vulnerabilities

By

Mozilla released Firefox 27 on Tuesday, including 13 patches, four of which address critical vulnerabilities that could allow an attacker to take over a targeted computer.

Adobe releases patch for Flash zero-day

By

The security update resolves an integer underflow vulnerability, which could allow an attacker to remotely take over systems on Windows, Mac and Linux platforms.

iTunes 11.1.4 update bring fixes for 25 bugs

By

iTunes 11.1.4 for Mac and Windows platforms was released last Wednesday.

Google services, including Gmail, go down for about an hour

By

Although a number of Google services went down for longer than an hour on Friday, it was the absence of Gmail that seems to have hit internet users the hardest.

Adobe patches critical Flash, Reader and Acrobat vulnerabilities

By

Adobe released updates to Flash, AIR, Reader and Acrobat on Tuesday to address vulnerabilities that can cause crashes and allow attackers to take control of affected computers.

Critical patch fixes nearly 150 flaws in hundreds of Oracle products

By

Oracle patch update contains fixes for 144 vulnerabilities existing across hundreds of its products, including several in Java, which recently led to millions of Yahoo visitors being exposed to malicious advertisements.

Light Patch Tuesday addresses 6 bugs, including XP zero-day, with 4 bulletins

By

No fixes for Internet Explorer are included in the January release, but Microsoft has patched a zero-day flaw in XP and Server 2003, which had been exploited in limited attacks.

Patch Tuesday preview highlights four Microsoft updates ranked "important"

Patch Tuesday preview highlights four Microsoft updates ranked "important"

By

It's anticipated that one of the patches will fix a zero-day flaw affecting Windows XP and Windows Server 2003 users.

Apple's Mavericks OS release comes with Safari browser patches

By

The Safari browser update fixes eight arbitrary code execution flaws and a bug that could allow users credentials to be disclosed.

Patch Tuesday update addresses 24 bugs, including exploited TIFF zero-day

Patch Tuesday update addresses 24 bugs, including exploited TIFF zero-day

By

With the update, users can employ a patch for a TIFF zero-day, which - when exploited - gives attackers the same user rights as targeted individuals.

Sign up to our newsletters

POLL